CLOUD SECURITY ENGINEER

Are you a self-driven person looking to advance your career as a high-impact player on a team? If so, we have an exciting challenge for you and your future!

At HP Hood LLC, we celebrate our differences. Our diversity of people, backgrounds, experiences, thoughts and perspectives are fostered to create an inclusive work environment. We are at our best when we respect and value each other - One Team One Company!

Our culture is built on value commitments to innovation, quality, results, integrity, community, people, and collaboration that fosters a strong employee engagement, teamwork, safety and wellness. We offer a competitive benefits package that includes health, dental, vision, wellness programs, employee discounts, 401k matches, tuition reimbursement, ongoing development, advancement opportunities and more. This position is also eligible for our bonus program.

Founded in 1846, today Hood is one of the largest and most trusted food and beverage manufacturers in the United States. Our portfolio of national and super-regional brands and licensed products includes Hood, Heluva Good, Lactaid, Blue Diamond Almond Breeze, Planet Oat and more.

Job Summary:

The Cloud Security Engineer will be an integral team member working under the management of the Sr. Information Security Risk Manager and alongside the rest of the Information Security team to ensure that HP Hood LLC business and information technology systems are secure. This role will be responsible for performing security hardening, administration, and monitoring within the HP Hood cloud environment. Perform intrusion detection and breach investigations, scheduling and conducting internal vulnerability assessments, assist user access provisioning, project execution activities, and other daily information security tasks.

Essential Duties and Responsibilities:

• Design, implement, administer, and support security controls in cloud environments.
• Propose new technologies and controls as necessary for job duties to the Sr. Information Security Risk Manager and implement them if approved.
• Perform cyber reconnaissance to illuminate a potential attack surface area, and actively work to reduce the threat surface.
• Responsible for monitoring, discovering, investigating, and mitigating cloud incidents and breaches in collaboration with both the Information Security and Managed Detection and Response teams through a combination of established tools (XDR, Web Proxy, Cloud Service Logs, EDR, MDM, DLP, etc), established procedures, and best practices.
• Available 24/7 to conduct incident response procedures in the event an incident happens or support cloud projects if needed.
• In coordination with the information security team, applications team, and network engineers, schedule and conduct regular web app and cloud vulnerability scans, providing results to the security team, applications team, and network engineers as needed in order to remediate security vulnerabilities.
• Assist with the management of the company Identity Provider and management of users' identities lifecycles across multiple platforms, including but not limited to: Active Directory, Azure AD, SAP, VPN, VDI, and BeyondTrust.
• Participate in projects for the Information Security and User Access team; adhering to established timelines.
• Assist with procedural and process document creation and updates as needed.
• Continue professional development by participating in educational opportunities; reading professional publications; maintaining personal networks; participating in professional organizations. Cross-train on various business software applications and infrastructure used at the company.
• Travel (which will include overnights) to company sites, external vendors and training sites as needed.

Education and Experience:

• Bachelor's degree in Information Security, Computer Information Systems, Computer Science, or other relevant work experience required.
• At least four years of experience with Information Security concepts and best practices, 3+ years' experience implementing or supporting cloud-based cyber security.
• Experience building, architecting, designing, and implementing distributed cloud-based systems in network infrastructure, security, data, or application development.
• Knowledge of virtual and physical environments and how they can tie into or impact cloud services.
• Experience administering Azure and AWS environments and security controls.

Skills and Competencies:

• Ability to learn/work with emerging technologies, methodologies, and solutions in the cloud/IT technology space.
• Hands on knowledge of SASE, SWG, CASB, and other ZeroTrust concepts. Experience with implementation a plus.
• Relevant certifications a plus
• Possesses strong written and verbal communication skills.
• Establishes and maintains effective relationships. Strong customer service skills.
• Attention to detail; highly accurate.
• Highly organized and methodical; strong adherence to policies and procedures.
• Well established critical thinking skills.
• Ability to create effective, scalable, and sustainable processes and procedures in a rapid moving environment.
• Competent to develop, document and articulate incident and breach reports.

HP Hood is an Equal Opportunity Employer

Female/Minority/Veteran/Disabled

"VERVRAA Federal Contractor"