Cloud Security Engineer ›
Filevine
Salt Lake City, UT, USA
Posted on Dec 22, 2024
Responsibilities
- Monitor cloud environments for security issues.
- Strategize and outline goals and objectives to secure Cloud environments and Cloud applications while building the application security program.
- Investigate security breaches and other cyber security incidents.
- Install security measures and operate software/hardware to protect systems and information infrastructure, including firewalls and data encryption programs.
- Document and research security breaches and assess the damage they cause.
- Work with internal teams to perform tests and uncover network vulnerabilities.
- Help remediate detected vulnerabilities to maintain high-security standards.
- Stay current on cloud security trends and news.
- Develop company-wide best practices for cloud security.
- Research security enhancements and make recommendations to management.
- Stay up to date on information technology trends and security standards
Qualifications
- 3+ years combined in information technology/security with emphasis on network security. A BS in a technical field such as information security or computer science can be considered as supplementary experience.
- Expertise with AWS and experience with either GCP or Azure cloud infrastructure security.
- Strategize and outline goals and objectives to secure Cloud environments and Cloud applications while building the application security program.
- Experience with scripting, development, and IaC languages (e.g., JavaScript, C++, Python, PowerShell)
- Ensure Filevine is following cloud security best practices for cloud environments.
- Ensure appropriate cloud logging, monitoring and response efforts are in place to protect Filevine and our customers.
- Strong history in advising and executing security architecture design and assessments.
- Great degree of familiarity with designing and implementing secure Enterprise cloud networks.
- Significant experience with SIEM and logging technologies.
- Knowledgeable with Threat Hunting practices.
- Experience with cloud hardening best practices.
- Experience with both executing and defending network penetration tests.
- Experience with container security for Windows & Linux operating systems.
- Working knowledge of security requirements for SOC 2 Type I & II, FedRAMP, HIPAA, GDPR, CCPA and CJIS.
- Significant experience with security engineering, incident response and security operations best practice.
- Significant experience with orchestration and observability tools.
- Strong Project Management experience.
- A strong curiosity, initiative, persistence, and willingness to experiment to provide solutions to diverse technical challenges.
- Expert knowledge with SOAR platforms and creating run books / play books.
- Automation skills are a plus.
- Strong team player and work ethic are essential.
Additional Qualifications
- CISSP Certification or equivalent experience. AWS Certified Cloud Practitioner (Foundational) or equivalent experience.
- AWS Certified Developer – Associate or equivalent experience.
- AWS Certified DevOps Engineer – (Professional) or equivalent experience.
- Certified Cloud Architect (CCA) or equivalent experience.
- Certified Cloud Professional (CCP) or equivalent experience.
- Certificate of Cloud Security Knowledge (CCSK) or equivalent experience.
- CompTIA Cloud+ or equivalent experience.
- CompTIA Cloud Essentials+ or equivalent experience.
- Google Associate Cloud Engineer or equivalent experience.
- Google Professional Cloud Architect or equivalent experience.
- Microsoft Certified Azure Fundamentals or equivalent experience.
- Microsoft Azure Administrator Associate or equivalent experience.
- Microsoft Azure Solutions Architect Expert or equivalent experience.