Overview
As a Senior Cloud Security Engineer, you will work within our growing DevSecOps practice delivering features to support developing, testing, andmonitoringsecure cloud architectures for cloud migration, cloudoptimizationand cloud deployment. We are looking for candidates with 8-10+yearsofexperiencewith cloud platform services,cybersecurityand DevOps practices such asinfrastructure ascode and confirmation management automation.
Contributions
Responsibilities include:
- Identifyand implement the mostsecurecloud-based solutions forthe customerincluding components for zero-trust architectures, identity and access management policy, and data privacy
- Understand the needs of stakeholders andoptimizesolutions that marry security with usability
- Monitor cloud environments for suspicious activities with cloud native monitoring or SIEM solutions and investigate security incidents whereappropriate
- Examineinfrastructure ascode written by others and analyzingrisk
- Ensurethat systems are safe and secure against cybersecurity threatsthrough risk assessment, threat modeling, and compliance with industry standards (e.g.NIST, ISO 27011, HIPPA, FISMA, etc.)
- Identifytechnical problems, perform root cause analysis, and developupdates and ‘fixes’
- Automate security processes such as vulnerability management and patch management
- Work with software developers and DevSecOps engineers to ensure that development follows establishedsecurityprocesses and works as intended
- Support enterprisecloud securitythrough infrastructure as code including any activities around automated server or network configurations, large-scale software deployments, and monitoring and testing
- Ensureeffective design and implementation of data protection and encryption mechanisms for data at rest and in transit
- Document as-is state of the environment, perform a gap analysis, and produce artifacts that articulate options and recommendations
- Identify, analyze, and resolve infrastructure vulnerabilities and application deployment issues
- Act as an individual contributor and mentor more junior team members
- Engineer and implement solutions and provide recommendations for continuous improvement for the services provided
- Present regular status updates and provide cross training to other team members
Qualifications
Required:
- Ability to obtain a U.S. government Security Clearance
- Bachelor’sDegree in an IT-relatedfield
- 7+years ofexperiencearchitecting, designing, developing, and implementing cloud solutions
- 5+years ofexperience with one or more clouds (i.e.AWS, Azure, or GCP)
- 5+years ofexperience with Git SCM providers such as GitHub, GitLab, Bitbucket
- 7+years ofexperiencesupportingsystems developmentwithin an Agile environment
- 5+years ofexperience implementing infrastructure as code and orchestration
- 5+years ofexperienceconducting monitoring, risk assessment, threatmodeling,and security testing in cloud environments
- 5+years ofexperience documenting POA&M, SSP, and A&A support documentation
Preferred:
- Certifications:
- AWS CertifiedSecurity–Specialty
- AWS Certified SolutionArchitect–Associate
- Microsoft Certified:Azure Administrator Associate
- Certified Information Systems Security Professional (CISSP)
- Excellent written and verbal communication skills, interpersonal,and collaborative skills
- Experience with documenting an as-is state of the environment, performinga gap analysis, and producingartifacts that articulate options and recommendations
- Experience with scripting inlanguages such asBash, PowerShell, Python, Groovy, or Ruby
- Experience with automation tools, including Pivotal, Chef, Terraform, CloudFormation, or Ansible
About steampunk
Steampunk relies on several factors to determine salary, including but not limited to geographic location, contractual requirements, education, knowledge, skills, competencies, and experience. The projected compensation range for this position is $130,000 to $180,000. The estimate displayed represents a typical annual salary range for this position. Annual salary is just one aspect of Steampunk’s total compensation package for employees. Learn more about additional Steampunk benefits here.
Identity Statement
As part of the application process, you are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud.
Steampunk is aChange Agentin the Federal contracting industry, bringing new thinking to clients in the Homeland, Federal Civilian, Health and DoD sectors. Through ourHuman-Centered delivery methodology, we are fundamentally changing the expectations our Federal clients have for true shared accountability in solving their toughest mission challenges. As anemployee owned company, we focus on investing in our employees to enable them to do the greatest work of their careers – and rewarding them for outstanding contributions to our growth. If you want to learn more about our story, visithttp://www.steampunk.com.
We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.Steampunk participates in the E-Verify program.
