Expedite Technology Solutions LLC
Senior Cloud Security Engineer
Expedite Technology Solutions LLC, Dover, Delaware, United States, 19904
Overview
Senior Cloud Security Engineer role at Expedite Technology Solutions LLC. Duration: 18+ Months. This role requires a highly skilled and experienced cloud security professional with a deep understanding of securing cloud workloads, tools and services. A strong preference is given to candidates with Zero Trust Network Access (ZTNA) principles and a proven track record of implementing and managing secure cloud environments across multiple platforms. The ideal candidate possesses a strong combination of technical expertise and operational leadership, with strong experience in Google Cloud Platform (GCP) for multi-cloud programs. Responsibilities Zero Trust Network Access (ZTNA):
Extensive experience in ZTNA engineering and automation, ensuring secure, scalable, and policy-driven access control. Includes architecting and approving ZTNA configurations, implementing identity-aware segmentation, enforcing least privilege access, and leading the transition from traditional VPNs to ZTNA solutions. A deep understanding of NIST 800-207 and Zero Trust Architecture best practices is essential, with hands-on experience with ZTNA technologies, particularly Zscaler. Cloud Platform Expertise:
Comprehensive understanding of cloud security platforms and IaaS providers such as Google, Amazon, and Microsoft. Knowledge of each provider's security services (IAM, security centers, firewalls, key management, logging, monitoring tools) and ability to design and implement secure cloud architectures. Proficiency with cloud-native security controls, CSPM tools, and practices to meet relevant security frameworks (NIST, ISO, SOC 2). Identity and Access Management (IAM):
Working knowledge of IAM concepts and best practices with specific experience in Okta. Proficient in implementing least privilege access controls, federation, SSO, and other IAM solutions across multiple clouds. Security Automation and Orchestration:
Strong understanding of automation pipelines, scripting and automation tools (Python, Terraform, CloudFormation, Azure Resource Manager). Ability to automate security tasks and processes, with experience in SOAR platforms being highly desirable. Security Monitoring and Incident Response:
Experience with SIEM logging and analysis is essential, with understanding of EDR and XDR concepts. Capable of analyzing security logs and alerts, threat hunting, and participating in incident response procedures. Security Policy, Compliance, and Governance:
Working knowledge of current security policies, federal and state regulations, and governance standards. Ability to implement security controls to meet compliance requirements and experience with cloud-specific frameworks like FedRAMP. Data Security:
Understanding of data classification standards and experience with data loss prevention (DLP) configurations. Network Security:
Deep understanding of modern networking, including Zero Trust principles, with extensive experience in firewall management, IDS/IPS, network segmentation, VPNs, routing and switching, traffic analysis, and security tools (Wireshark, tcpdump). Experience with NAC, DNS security, load balancers, and WAFs is highly desirable. Endpoint Security:
Understanding of endpoint security concepts and technologies.
Soft Skills & Experience
Leadership and Communication:
Ability to lead and mentor junior security engineers, excellent communication and presentation skills, and the ability to explain complex technical concepts to non-technical audiences. Problem-Solving and Critical Thinking:
Strong analytical and problem-solving skills, with the ability to think critically and strategically, anticipate security risks, and develop effective mitigation strategies.
Job Details
Seniority level:
Entry level Employment type:
Full-time Industries:
Software Development
#J-18808-Ljbffr
Senior Cloud Security Engineer role at Expedite Technology Solutions LLC. Duration: 18+ Months. This role requires a highly skilled and experienced cloud security professional with a deep understanding of securing cloud workloads, tools and services. A strong preference is given to candidates with Zero Trust Network Access (ZTNA) principles and a proven track record of implementing and managing secure cloud environments across multiple platforms. The ideal candidate possesses a strong combination of technical expertise and operational leadership, with strong experience in Google Cloud Platform (GCP) for multi-cloud programs. Responsibilities Zero Trust Network Access (ZTNA):
Extensive experience in ZTNA engineering and automation, ensuring secure, scalable, and policy-driven access control. Includes architecting and approving ZTNA configurations, implementing identity-aware segmentation, enforcing least privilege access, and leading the transition from traditional VPNs to ZTNA solutions. A deep understanding of NIST 800-207 and Zero Trust Architecture best practices is essential, with hands-on experience with ZTNA technologies, particularly Zscaler. Cloud Platform Expertise:
Comprehensive understanding of cloud security platforms and IaaS providers such as Google, Amazon, and Microsoft. Knowledge of each provider's security services (IAM, security centers, firewalls, key management, logging, monitoring tools) and ability to design and implement secure cloud architectures. Proficiency with cloud-native security controls, CSPM tools, and practices to meet relevant security frameworks (NIST, ISO, SOC 2). Identity and Access Management (IAM):
Working knowledge of IAM concepts and best practices with specific experience in Okta. Proficient in implementing least privilege access controls, federation, SSO, and other IAM solutions across multiple clouds. Security Automation and Orchestration:
Strong understanding of automation pipelines, scripting and automation tools (Python, Terraform, CloudFormation, Azure Resource Manager). Ability to automate security tasks and processes, with experience in SOAR platforms being highly desirable. Security Monitoring and Incident Response:
Experience with SIEM logging and analysis is essential, with understanding of EDR and XDR concepts. Capable of analyzing security logs and alerts, threat hunting, and participating in incident response procedures. Security Policy, Compliance, and Governance:
Working knowledge of current security policies, federal and state regulations, and governance standards. Ability to implement security controls to meet compliance requirements and experience with cloud-specific frameworks like FedRAMP. Data Security:
Understanding of data classification standards and experience with data loss prevention (DLP) configurations. Network Security:
Deep understanding of modern networking, including Zero Trust principles, with extensive experience in firewall management, IDS/IPS, network segmentation, VPNs, routing and switching, traffic analysis, and security tools (Wireshark, tcpdump). Experience with NAC, DNS security, load balancers, and WAFs is highly desirable. Endpoint Security:
Understanding of endpoint security concepts and technologies.
Soft Skills & Experience
Leadership and Communication:
Ability to lead and mentor junior security engineers, excellent communication and presentation skills, and the ability to explain complex technical concepts to non-technical audiences. Problem-Solving and Critical Thinking:
Strong analytical and problem-solving skills, with the ability to think critically and strategically, anticipate security risks, and develop effective mitigation strategies.
Job Details
Seniority level:
Entry level Employment type:
Full-time Industries:
Software Development
#J-18808-Ljbffr