Cloud Security Engineer

Département : Cloud Security Engineer
Emplacement(s) du projet : Belgium
Éducation : Cloud Security Engineer

Responsibility

  • Work with cloud engineering teams to ensure cloud infrastructure and software meets security best practices;
  • Evaluate the implementation of security tools via internal audits to verify compliance with the security policies;
  • Report common and repeat problems to management and propose process and technical improvements;
  • Monitor, analyze and respond to security events and incidents from SIEM, firewalls, IDS/IPS, anti-virus, SAST/DAST/IAST security scanners, and other security tools;
  • Research, evaluate, design, test, recommend, and implement new network security tools such as IDS/IPS, SIEM, and anti-DDoS tools;
  • Promote a culture of security throughout the company, and educate other departments (eg engineering, operations) on security procedures and security risks.

Skills/Experience

  • Bachelor or Master degree in a relevant field.
  • Minimum 3 – 5 years experience in a cloud-based environment.
  • Knowledge and experience with security technology for cloud environment (OpenShift, AWS, Azure, BlueMix).
  • Knowledge of governance risk and compliance monitoring (eg AWS CloudTrail, AWS Compliance Center, AWS Trusted Advisor, Config Dashboard, Azure Policy).
  • Knowledge of security patching tools and anti – malware tool and endpoint protection.
  • Knowledge of system security vulnerabilities and remediation techniques, and familiarity with common attack patterns and exploitation techniques.
  • Knowledge of Security Incident and Event Management (SIEM) tools (eg ELF/ELK stack).
  • Experience with network essentials (TCP/IP, DNS, HTTP, TLS).
  • Knowledge of system security vulnerabilities and remediation techniques, and familiarity with common attack patterns and exploitation techniques.
  • Code analysis and vulnerability scanning tools (eg SonarQube, CheckMarx).
  • Centralized logging and auditing (eg CloudWatch, S3 buckets, Azure Audit logs, Elasticsearch).
  • Hardware Security Modules (HSMs).
  • Virtual private network (VPN) technology.

Apply Now