|Published||May 12, 2022|
|Location||New York, NY|
RESPONSIBILITIES Kforce has a client that is seeking a Cloud Security Engineer in New York, NY. Summary The Cloud Security Engineer will work closely with global product teams based in the North America, Costa Rica, UK and other EU locations. Daily operations will include securing CICD pipelines, securely engineering infrastructure as code deployments and configuring API security solutions on-demand across multiple practice solutions. Responsibilities include Cloud Security Engineer will manage platform risks and identify opportunities for improvement Work to continually improve the security posture of client-facing applications developed by ensuring risks are identified and appropriately mitigated Promote and improve the secure development lifecycle and DevSecOps standards and guidelines Design, develop, and manage a secure infrastructure leveraging cloud-native and third-party security technologies As a Cloud Security Engineer, you will ensure solutions adhere to company policies and is meetingexceeding current standards Secure areas including infrastructure as code, configuration management, accessing identity and access management, network security across multi-cloud environments, event monitoring and reporting, secure SDLC, risk assessments, Cloud infrastructure entitlement management, and incident response Identify gaps in security infrastructure and solutions and provide thought leadership in the development of appropriate technical solutions REQUIREMENTS Bachelor's degree required CISSP (or similar certification) a plus AWS Focus - Certs Required 5+ years of DevSecOps experience, ideally in a professional services environment or regulated industry Automation mindset and experience (CloudFormation, Terraform, Ansible, Python) Demonstrated experience of secure SDLC and DevSecOps Cloud Security Engineer DevOps Cloud native tools S3, emr, rds, etc Focus how to apply security controls in that area Excellent foundation in overall security standards, security policies, and security audits Strong understanding of IT concepts as they relate to security risk Working knowledge of common information security controls, guidelines, and standards such as HITRUST, ISO27001, OWASP, SOC 2, NIST Knowledge of data protection regulations such as GDPR, CCPA, and HIPAA would be ideal Strong organizational and interpersonal skills Ability to manage multiple projects and deadlines simultaneously Ability to work independently Strong communication skills Strong teamwork and collaboration skills Kforce is an Equal OpportunityAffirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.