The Infrastructure Security Architect/Engineer, considered a security and technical expert in both on-prem and cloud security technology, architects, designs, systems implementation and integration with deep, specialized knowledge of Amazon Web Services and infrastructure security. The Engineer will be responsible for designing and delivering security solutions in both cloud infrastructure and on-prem based on security standards, governance and control practices. Conducts technical research when necessary to contribute to setting security direction and strategy. Assists others on own team, or other teams where applicable, on security projects or security-relevant tasks on technical project. Expert Knowledge in SIEM and/or Database security technologies is required. Experience in scripting languages like Python, Unix Shell (bash/ksh), etc. would be a plus.
Qualifications:/Skills:
- Undergraduate Degree in Computer Science
- 5+ years of relevant experience
- AWS certification and Strong Communication skills is a must.
- CISSP, CEH certifications would be a great plus
- SIEM and/or Database Security would be a huge plus
Experience:
- Database knowledge: SQL Server, RDS PostgreSQL, Aurora, Amazon Dynamo, Mongo DB and/or MySQL
- Authentication Protocols in AWS, windows and Linux
- SSL Certificates, AWS Auth and/or SSL communication
- Scripting languages: Unix Shell (bash/ksh), PowerShell, Batch commands
- Knowledge of Security Risk and capabilities with SaaS, IaaS, PaaS
- QRadar, Database Security Monitoring, Network & Host Based Monitoring, Vulnerability Management, Splunk, PKI, Tripwire etc.
Principal Responsibilities: Designs, develops and implements new security technologies to support business and technology solutions
- Ability to present and articulate Security Architecture and Designs in front of large forums and senior management
- Acts as a subject matter expert (SME) for security tools, applications and processes.
- Create, maintain and deliver to project schedules and budgets.
- Identify, manage and maintain KPI and other metrics for core processes.
- Review and assess the current supported tools, apps and processes to determine gaps for meeting the needs of the stakeholders.
- Design and implement changes to existing security tools, applications and processes based on changes in scope or needs.
- Work directly with internal infrastructure teams to align and execute infrastructure changes to support the tools, apps and processes.
- Create process documents for operations, maintenance and integrating output from these tools into daily security operations.
Qualifications:
- Minimum of 7 years of related experience
- Bachelor’s degree, preferred with Masters or equivalent experience
Specific Skills and Technologies
- QRadar or any SIEM tools, Splunk ES, Guardium, Tripwire, Qualys, Symantec DLP, McAfee ePO, FireEye HX/NX/EX, PKI, EDR tools like Crowd strike, Carbon black, Vault, IoT Security tools
- AWS EC2, VPC, Route53, CloudFront, S3, CloudWatch, Azure Compute
- Extensive knowledge in the field of event logging and reporting. Understanding of various logging format (e.g. Syslog, Windows event logging, diff. database logging, flat file log format of diff. technologies etc.)
Source link
