Associate Principal, Cyber Defense Engineer - Blue Team - Cloud at OCC
OCC is seeking a Blue Team Cloud Security Engineer to increase OCC's security posture to defend against all threats against organization operations, assets, or individuals by engineering and/or assessing complex cloud-based computing environments. Work in collaboration with internal departments and system users. Provide technical cloud security engineering and assessment expertise to support the virtualization, cloud, and automation efforts.
Members of the Blue Team are expected to have exceptionally strong ethics, integrity and be accountable for their actions. The Blue Team must have a healthy, competitive and bar-raising relationship with the individuals who monitor and deploy OCC’s preventative and detective controls.
The ideal team member will have extensive experience in more than one of the following security engineering and testing domains: AWS Cloud, Google Cloud, Microsoft Azure Cloud.
This candidate must be driven, effective communicator, enthusiastic and have the desire to stay ahead of today’s emerging threats and actor techniques.
Primary Duties and Responsibilities:
Perform Cloud Assessments, Cloud Security Engineering.
Understand vulnerabilities and develop relevant exploits/payloads for use during test exercises.
Perform independent reviews of OCC’s security, cloud environments, on premises network, and enterprise systems.
Plan/Design/Execute security related artifacts and activities.
Stay on-time, and within scope of testing activities.
Develop clear detailed reports and recommendations based on concrete evidence.
Debrief users and provide remediation strategy on findings.
Participate in adopting security best practices and implementing new ideas and innovations according to the industry trends.
Adhere to the best practices and work for delivering secured and quality products.
Consult with technical experts and system owners on all aspects of Information Security and Compliance.
Work closely with Production Support staff, Incidence Response, and IT infrastructure to increase organizational security posture.
Support OCC’s security objectives and remediation efforts relating to Security Assurance and Testing.
Stay current on emerging technology trends and the threat landscape.
Advise IT on current and emerging threats, their attack vectors, and how to mitigate them.
Reasonable accommodations may be made to enable individuals with disabilities to perform the primary functions.
Cloud engineering and assessment experience, with a focus on development of secure enterprise solutions
Working knowledge or demonstrated experience with and corporate hands-on experience with configuration and implementation of infrastructure as code, AWS cloud, Azure cloud, or other similar cloud technologies
Cloud services experience in IaaS, PaaS, and/or SaaS.
Strong understanding of modern deployment technologies including CICD, Terraform, Ansible, and Docker
Analytical, problem solving and troubleshooting skills with the ability to develop creative solutions.
Ability to plan events based on the team’s overall schedule.
Ability to articulate ideas clearly and concisely in both written and verbal formats.
Strong technical research ability
Strong knowledge of common enterprise infrastructure technology stacks and network configurations.
Experience working on critical infrastructure in a regulated environment.
Knowledge and experience with DevOps, Kubernetes, GitHub, and Jenkins strongly desired
Understanding of industry standards including one or both of the following NIST RMF/CSF, COBIT 5/2019.
Hands-on experience with scripting and coding, such as Python, PowerShell, Terraform, shell scripts, etc. preferred
Excellent proficiency in cloud assessment and engineering, network,.
Proficiency in cryptography.
Proficiency with security tools-of-the-trade (Kali, Metasploit, nMap, Qualys, Maltigo, Burp Suite, etc.).
Experience with Windows, Unix, Cisco, platforms, and controls.
Education and/or Experience:
3-5+ Years’ direct experience cloud security engineering or assessment.
10+ Years’ experience in Information Assurance or Information Security environment.
Certificates or Licenses:
Security-related certifications (AWS Certified Solutions Architect, AWS Certified Security Specialty, CISSP, CCSP, etc.) are highly desired.