Jobs via Dice
Cloud Security Engineer
Overview
The successful candidate will be a subject matter expert with hands‑on experience with cloud technologies, tools and methodologies with a particular focus on Microsoft Azure. The role is suited for an experienced Cloud Security Engineer with proven understanding in enterprise security and will focus on building tool sets and processes to support Navy's Cloud program. Navy's Cloud Organization fosters a collaborative environment and is building a best‑in‑class Cloud program that protects Navy Federal information and cloud compute environments.
Responsibilities
Support the ongoing and critical work within the Enterprise Data workstream
Secure, manage, and optimize mission‑critical data services across our cloud infrastructure
Contribute to the vision, strategy, and execution for integrated security controls across SaaS, PaaS, IaaS for Navy's Azure environment
Demonstrate clear understanding of current risks and threats to cloud infrastructure and IT infrastructures
Provide security consultancy and engineering support for cloud security solutions, including analysis and development of Azure and other security solutions
Provide architecture assurance on cloud security initiatives and compliance of existing security standards interfacing with infrastructure and development teams
Maintain the security infrastructure tools that are built on the cloud platform, providing stability and policies and procedures
Develop and maintain documentation of all security products including specific tools, technologies and processes
Participate in information security incident response activities for the NFCU's environment
Respond to security vulnerabilities identified through periodic and on‑demand system audits and vulnerability assessments of cloud services
Monitor compliance with the organization's information security policies and procedures among employees, contractors and third parties
Manage remediation efforts for any gaps reported in audits or recommended process improvements
Actively monitor new and emerging cloud security technologies, trends, issues, and solutions and assess their applicability to Navy Federal's cloud strategy
Qualifications
Bachelor's degree in computer science, information technology, or similar field
Hands‑on experience with Azure Policy and Azure initiatives management
Experience with Azure Key Vault integration, secrets, certificate and key management
Hands‑on experience with Azure RBAC, B2C, SAML SSO, OAuth 2.0 configuration, setup and operations management
Experience with Azure Access and Privileged Identity Management PIM
Experience with Microsoft Defender for Cloud, Microsoft Defender for Cloud Apps, and Defender for endpoints
5+ years of experience in a technical role with minimum 3 years focused on cloud security and access control
Experience with Azure DevOps permission management and overall governance
Strong knowledge of information security and access controls
Desired Qualifications
Industry certification (CISSP, CISA, Azure)
Financial industry experience preferred
Experience with other IaaS and PaaS elements such as compute services, Data Services, and App Services
Experience with Azure Purview
Working knowledge of app registration management and enterprise applications
Experience with Microsoft Fabrics, FinOps, Databricks, Azure Synapse, Alation, Confluent Kafka & SCIM API configuration
Experience with Azure Resource Management templates and Azure Bicep
Understanding of encryption options in Azure such as CMK with DES and TDE
Experience with certificate management for IaaS and PaaS elements
Hands‐on development and scripting skills in PowerShell 5
Knowledge of Azure Policy as Code
Experience with Azure Identity Governance
Hours Monday – Friday, 8:00 AM – 4:30 PM
Locations 820 Follin Lane, Vienna, VA 22180 5510 Heritage Oaks Drive, Pensacola, FL 32526 141 Security Drive, Winchester, VA 22602
Equal Employment Opportunity All qualified applicants will receive consideration for employment without regard to age, race, sex, color, religion, national origin, disability, veteran status, pregnancy, sexual orientation, genetic information, gender identity or any other basis protected by applicable law.
#J-18808-Ljbffr
The successful candidate will be a subject matter expert with hands‑on experience with cloud technologies, tools and methodologies with a particular focus on Microsoft Azure. The role is suited for an experienced Cloud Security Engineer with proven understanding in enterprise security and will focus on building tool sets and processes to support Navy's Cloud program. Navy's Cloud Organization fosters a collaborative environment and is building a best‑in‑class Cloud program that protects Navy Federal information and cloud compute environments.
Responsibilities
Support the ongoing and critical work within the Enterprise Data workstream
Secure, manage, and optimize mission‑critical data services across our cloud infrastructure
Contribute to the vision, strategy, and execution for integrated security controls across SaaS, PaaS, IaaS for Navy's Azure environment
Demonstrate clear understanding of current risks and threats to cloud infrastructure and IT infrastructures
Provide security consultancy and engineering support for cloud security solutions, including analysis and development of Azure and other security solutions
Provide architecture assurance on cloud security initiatives and compliance of existing security standards interfacing with infrastructure and development teams
Maintain the security infrastructure tools that are built on the cloud platform, providing stability and policies and procedures
Develop and maintain documentation of all security products including specific tools, technologies and processes
Participate in information security incident response activities for the NFCU's environment
Respond to security vulnerabilities identified through periodic and on‑demand system audits and vulnerability assessments of cloud services
Monitor compliance with the organization's information security policies and procedures among employees, contractors and third parties
Manage remediation efforts for any gaps reported in audits or recommended process improvements
Actively monitor new and emerging cloud security technologies, trends, issues, and solutions and assess their applicability to Navy Federal's cloud strategy
Qualifications
Bachelor's degree in computer science, information technology, or similar field
Hands‑on experience with Azure Policy and Azure initiatives management
Experience with Azure Key Vault integration, secrets, certificate and key management
Hands‑on experience with Azure RBAC, B2C, SAML SSO, OAuth 2.0 configuration, setup and operations management
Experience with Azure Access and Privileged Identity Management PIM
Experience with Microsoft Defender for Cloud, Microsoft Defender for Cloud Apps, and Defender for endpoints
5+ years of experience in a technical role with minimum 3 years focused on cloud security and access control
Experience with Azure DevOps permission management and overall governance
Strong knowledge of information security and access controls
Desired Qualifications
Industry certification (CISSP, CISA, Azure)
Financial industry experience preferred
Experience with other IaaS and PaaS elements such as compute services, Data Services, and App Services
Experience with Azure Purview
Working knowledge of app registration management and enterprise applications
Experience with Microsoft Fabrics, FinOps, Databricks, Azure Synapse, Alation, Confluent Kafka & SCIM API configuration
Experience with Azure Resource Management templates and Azure Bicep
Understanding of encryption options in Azure such as CMK with DES and TDE
Experience with certificate management for IaaS and PaaS elements
Hands‐on development and scripting skills in PowerShell 5
Knowledge of Azure Policy as Code
Experience with Azure Identity Governance
Hours Monday – Friday, 8:00 AM – 4:30 PM
Locations 820 Follin Lane, Vienna, VA 22180 5510 Heritage Oaks Drive, Pensacola, FL 32526 141 Security Drive, Winchester, VA 22602
Equal Employment Opportunity All qualified applicants will receive consideration for employment without regard to age, race, sex, color, religion, national origin, disability, veteran status, pregnancy, sexual orientation, genetic information, gender identity or any other basis protected by applicable law.
#J-18808-Ljbffr