Cloud Security Engineer

Job Title: Cloud Security Engineer

Job ID: 3

Job Location: Berkeley Heights, NJ, Omaha, NE, Alpharetta, GA, Marietta, GA or remote

Job Travel Location(s):

# Positions: 2

Employment Type: W2

Duration: Long Term

# of Layers: 0

Work Eligibility: US Permanent Eligibility to Work Required

Key Technology: Azure, IAM, Security

Job Responsibilities:

• Responsible for implementing technology initiatives to secure our key government client's cloud environment.
• Be accountable for assisting in strategic planning and architecture and securing enterprise information by identifying network and application security requirements, implementing and testing security controls and procedures.
• Enable Cloud Cybersecurity controls and compliance requirements and remediation programs based on business priorities and risks to address Cyber–Security, Cyber Defense and Business needs of the customer.

Skills and Experience Required:

Required:

• 5+ years' cyber related experience in a commercial environment with Azure, in a technical information security and risk management role.
• 5+ years managing security policies and initiatives in Azure.
• Knowledge of Identity Access and Management concepts, multifactor authentication, SSO/Federation.
• Knowledge of Privileged Access Management key concepts.
• Ability to set up and configure the Azure security platforms, and function as an overall lead managing end to end security on the Azure Cloud regions.
• Understanding of Network and Application Vulnerability testing as it relates to Azure systems.
• Experience with security concepts & tools related to CI/CD pipelines, and software scanning.
• Able to demonstrate understanding of Information Security and Risk Management capabilities related to cloud computing across Windows and Linux, with demonstrated direct experience with the following domains:
• Identity, Credential and Access Management (ICAM)
• Authentication and Authorization including SSO and Identity Federation.
• Zero–Trust Model.
• Defense–In–Depth.
• Governance and Compliance.
• Securing Data.
• Securing the Operating System.
• Protecting the Network Layer.
• Continuous Diagnostics and Mitigation, Alerting, Audit Trail, and Incident Response.
• Cloud Core Platform: Compute, Storage, Networking.

Desired:

• Government environments and Gov–Cloud experience.
• Experience with CrowdStrike Falcon EDR for Azure.
• Ability to Manage/maintain FISMA and FedRAMP compliance for a government information system.
• Demonstrated experience collaborating directly with external clients, business leadership, and auditors.
• 5+ years of firsthand working with the various Azure security tools/platforms such as:
• Extended Detection and Response (XDR): Microsoft Defender for Cloud Apps, Microsoft Defender for Endpoint, Microsoft Defender for Office 365, Microsoft Defender for Identity.
• Data Protection: Microsoft Purview, Microsoft Information Protection, DLP, One Trust, Kubernetes.
• Identity and Access Management (IAM): Zero Trust, Azure IAM and AWS IAM, Entra ID (Azure AD), Multitenant Organization (MTO), Lighthouse, Key Vault, Conditional Access.
• Monitoring Compliance: Sentinel, MDC.
• Entra ID (formerly Azure AD), M365.

Education:

• Bachelor's degree in a technology field, Master's degree preferred.

Certifications:

• CISSP, CCSP, Azure/AWS/Google Security specific Training and Certification.