29 applicants

Company

Original Job Post

Trek10, Inc. · 2 days ago

Senior Cloud Security Engineer III

United States

Full-time

Remote

Senior Level

5+ years exp

Wonder how qualified you are to the job?

Maximize your interview chances

ConsultingService Industry

Hiring Manager

Megan (Tobin) Bivin

Insider Connection @Trek10, Inc.

Discover valuable connections within the company who might provide insights and potential referrals, giving your job application an inside edge.

Responsibilities

Continually identify, develop, design and implement security tools, systems, and/or processes to ensure secure cloud infrastructure using infrastructure as code

Understand, interpret, maintain, and provide both technical and compliance guidance that aligns with NIST and/or AWS CIS frameworks for AWS GovCloud Systems and any other necessary frameworks or standards in use by a federal client

Assist DevOps teams with securing Gitlab pipeline deployments

Conduct security assessments on existing AWS cloud-based solutions to ensure NIST/framework compliance with DoD Missions

Monitor security logs and perform regular security assessments to identify vulnerabilities and potential threats as well as suggest improvements to monitoring processes and systems

Periodically monitor/audit implementations and ensure they are functioning properly

Identify new threats/scenarios and suggest or create monitoring to bring visibility to anomalous activity

Develop solutions using infrastructure as code for various logging and monitoring solutions

Design vulnerability scans of cloud-based and mobile applications and infrastructure to identify weaknesses, coordinate with app teams to confirm validity of findings, and recommend and assist with mitigations as needed

Improve application/infrastructure security by patching vulnerabilities, securing infrastructure, and conducting security reviews on incoming code

Continually research security tools and best practices in order to adjust and improve security posture as the field progresses and best practices change

Collaborate across multiple product teams to ensure secure practices

Take leadership in incident response and remediation efforts in the case of security events

Other duties as assigned

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

ProgrammingAWSSecurity HubGuard DutyConfigAmazon InspectorSOCNOCPythonNode.jsTypescriptGoLangJavaC#Security ClearanceDoD 8570 CertificationGovernment ContractingUSAF CloudOnePlatform OneAWS Professional CertificationSecurity CertificationScalable InfrastructureAWS Security Services3rd Party Security ToolsTechnical CommunicationConsultingAgile Project ManagementNetworking ProtocolsContainerization ConceptsRisk Management Frameworks

Required

5+ years of general IT experience (programming, hardware, software, cloud, etc)

5+ years of engineering experience in AWS Gov Cloud environments

3+ years building solutions with AWS Security Hub, AWS Guard Duty, AWS Config, Amazon Inspector

2+ years of SOC / NOC experience

2+ years of programming experience utilizing Python, Node.js, Typescript, GoLang, Java, C#, or other similar languages

Must be a U.S. Citizen

Must be able to obtain a security clearance (Class or Unclass)

DoD 8570 certification level: IAT II

Preferred

Bachelor's degree or greater in Information Technology, Computer Science, Cybersecurity, or a related field

2+ years of experience working in government contracting

1+ year of experience working with USAF CloudOne and/or Platform One

Have an AWS Professional level certification

Have a higher level security specific certification such as AWS Security Specialty, CCSP, CEH, CISM, etc

DoD 8570 certification level: IAT III (DoD 8570)

Experience building scalable, automated infrastructure

Experience working with various AWS security services such as AWS Security Hub, Config, Cloudtrail, etc.

Experience working with 3rd party security tools and ability to detail why it is useful for the organization

Experience in communicating technical architecture and engineering solutions between various teams and audiences

Experience working in a consultative, client-facing consulting role

Familiarity with the concept of Agile Project Management or other project management methodologies

Strong understanding of networking / web protocols

Strong understanding of containerization concepts and services/tools such as Docker, ECS, EKS, Fargate, etc.

Familiarity with risk management frameworks such as NIST 800-53 Rev 4 or 5 and/or FedRAMP as well as general understanding of RFM/ATO process

Strong understanding of cloud, infrastructure, and application components with regards to continuous monitoring

Benefits

Medical, dental, and company-paid vision and telemedicine

401k plan with company match

Vacation and unlimited sick time

Company-paid short-term and long-term disability

9 company-paid holidays

Monthly Employee Care stipend

Annual home office setup and equipment allowance

Team retreats

Robust training and continuous learning environment

Competitive salaries

Company

Trek10, Inc.

Trek10 is an AWS Premier Tier Services Partner 100% focused on leveraging the absolute best tools and AWS platform services to design, build, and support serverless and event-driven architectures for our clients.

Founded in 2013

South Bend, Indiana, USA

51-200 employees