Cloud Security Engineer ConsultantApply Now
Location: Holyoke, Massachusetts 01040
Employment Type: Contract
Job Description
Contract Length: 8+ months with possible extension; Remote position
Job Summary: This person will assist the IT Cyber Security Administration Department.
Responsibilities:
Requirements:
Job Summary: This person will assist the IT Cyber Security Administration Department.
Responsibilities:
- Ensure seamless integration of threat modeling activities into the CI/CD pipeline to assess security risks at every stage of the software development lifecycle.
- Establish a feedback loop between threat modeling results and development teams, providing actionable insights and recommendations to address identified threats effectively.
- Evaluate and identify potential risks associated with cloud services and configurations, including unauthorized access, misconfigurations, and service outages.
- Conduct assessments to ensure compliance with regulatory requirements, as well as adherence to cloud provider security best practices and frameworks (CIS Benchmarks, AWS Foundational Security Best practices).
- Develop risk mitigation strategies and recommendations tailored to the cloud environment, such as implementing access controls, encryption mechanisms, and monitoring solutions, in collaboration with cloud architects.
Requirements:
- 5+ years working experience with AWS technologies, and oversee migrations from on-prem to AWS following security best practices.
- 5+ years working experience in container orchestration platforms such as Amazon Elastic Container Service (ECS) Fargate and Amazon Elastic Kubernetes Service (EKS).
- Undergraduate Degree in Cyber Security, Information Technology, or Computer Science, or 4 years of equivalent experience in Information Technology.
- Working experience with cloud security platforms such as CNAPP, CSPM, CIEM, and CWPP solutions.
- Strong understanding of cloud computing, containerization, and Kubernetes orchestration security best practices.
- Experience working with CI/CD tooling and implementing security controls in the pipelines
- In-depth knowledge of cloud security principles and compliance standards relating to the cloud, containers and Kubernetes.
Contact
Derek Crowley
Technical Recruiter
Back to Jobs Email to a Friend Apply Now