Cloud Security Engineer

Cloud Security Engineer
Contract to Hire
Onsite

Triumph Services is seeking a skilled and experienced Cloud Security Engineer to join our client's team in Richmond, VA. The successful candidate will play a crucial role in ensuring the security of our cloud environments by implementing and managing robust security measures and protocols. This position offers an exciting opportunity to work with cutting-edge technologies and contribute to the protection of our digital assets.

Responsibilities:

• Design, implement, and manage security solutions for cloud-based environments, both in the console and in code.
• Develop and enforce security policies, standards, and best practices for cloud infrastructure and applications.
• Conduct regular security assessments, vulnerability scans, and penetration tests to identify and mitigate risks.
• Monitor and respond to security incidents and threats, ensuring timely and effective resolution.
• Collaborate with CloudOps and Dev teams to integrate security into the development and deployment processes.
• Implement and manage identity and access management (IAM) solutions to ensure proper access controls.
• Stay up-to-date with the latest security trends, threats, and technologies, and recommend improvements to enhance cloud security posture.
• Provide training and guidance to internal teams on cloud security best practices and protocols.
• Prepare and present regular reports on cloud security status, incidents, and metrics to senior management.

Qualifications:

• Bachelor's degree in Computer Science, Information Security, or a related field.
• Proven experience as a Cloud Security Engineer or in a similar role.
• In-depth knowledge of cloud security frameworks, principles, and best practices.
• Strong understanding of cloud platforms, specifically strong in AWS.
• Proficiency in scripting and automation (Python, Bash, etc.).
• Experience with infrastructure as code using Terraform.
• Familiarity with containerization and orchestration tools (Docker, Kubernetes).
• Experience with security tools and technologies, including firewalls, encryption, intrusion detection/prevention systems (IDS/IPS), and SIEM solutions.
• Familiarity with regulatory requirements and standards such as GDPR, HIPAA, and ISO 27001.
• Excellent problem-solving skills and the ability to work under pressure.
• Strong communication and collaboration skills, with the ability to convey complex security concepts to non-technical stakeholders.
• Relevant certifications such as CISSP, CISM, CCSP, or AWS Certified Security - Specialty are highly desirable.

#Dice