Shuvel is hiring a
Cloud Security Engineer

Summary

The job is for a Cloud Security Engineer working remotely on a contract basis. The role involves hands-on experience with Microsoft Azure technologies, particularly in access control, certificate management, and key management. The candidate should have a strong understanding of information security and access controls, preferably with industry certifications.

Requirements

• Hands-on experience with Access control technologies such as Azure AD B2C; SAML SSO, oAuth 2.0 configuration, set-up and operations management
• Experience with certificate management for IaaS and PaaS elements
• Experience with Azure AD, Azure Resource Management Templates and Azure policies
• Experience with Azure Key Vault integration and key management
• Hands-on development and scripting skills in PowerShell 5
• 7+ years’ experience working in a technical role with a minimum of 3 years’ experience focused on information security and access control
• Strong knowledge of information security and access controls

Responsibilities

• Contribute to the vision, strategy, and drive execution for integrated security controls across SaaS, PaaS, IaaS for Navy’s Azure environment
• Demonstrate clear understanding of current risks and threats to Cloud infrastructure and/or IT infrastructures at technical and manager audiences
• Drive Identity and Access Management (IAM), configuration management, and monitoring strategy for Azure
• Provide security consultancy and engineering support for cloud security solutions including analysis and development of Azure and other security solutions
• Provide architecture assurance on Cloud security initiatives and compliance of existing security standards interfacing with infrastructure and development teams
• Maintain the security infrastructure tools that are built on the Cloud platform, providing stability and policies and procedures
• Support the development and delivery of a comprehensive ISP for the entire organization
• Develop and maintain documentation of all Security products including specific tools, technologies and processes
• Participate in Information Security Incident Response activities for the NFCU’s environment
• Respond to security vulnerabilities identified through periodic and on-demand system audits and vulnerability assessments of Cloud services
• Monitor compliance with the organization's information security policies and procedures among employees, contractors and third parties
• Manage remediation efforts for any gaps reported in audits or recommended process improvements
• Actively monitor new and emerging cloud security technologies, trends, issues, and solutions and assess their applicability to Navy Federal’s cloud strategy

Preferred Qualifications

• Industry certification (CISSP, CISA, CISM, CEH) of high interest
• Financial industry experience preferred
• Experience with CheckPoint Next Generation Firewall and Threat Prevention Suite (nice to have)

Benefits

Not specified