Cloud Security Deployment Engineer

Description:The Cloud Security Technology & Controls Deployment specialist will be responsible for management of cloud security tools and end-end controls UAT/ production deployments within multi cloud platforms. You will be responsible to establish new process and support on multiple cloud initiatives to help mature the cloud security posture management. You'll work with internal Cloud security engineering teams to ensure that code is developed based on the cloud security requirements and perform end-end UAT and implementations of Cloud environments. You'll be responsible for all production deployments as part of the cloud initiatives.This role requires deep knowledge of cloud configurations, industry standards and related security controls. The specialist must also develop and maintain documentation that accurately describes the current cloud control environment, for review by oversight organizations (Audit, Compliance, Operational Risk, Regulators, etc.)The successful candidate is an intellectually curious self-starter who requires minimal oversight and who has hands-on experience to hit ground day 1 with cloud control deployments. Along with a strong work ethic, the candidate must have cloud experience and a proven history executing and evaluating proof of concept and pilot programs. Working with and influencing at various levels of the organization, engaging with executive leadership across the enterprise, as well as with third parties to enable solutions at our client are required experience for success. The successful candidate must be familiar with information security concepts and can speak to processes, tools, and technologies. Role needs to demonstrate abilities and/or a proven record of success cloud experience building and delivering solutions across the major cloud service providers in the following areas: Enterprise Cloud Strategy Planning and Transformation Cloud Account and Subscription Architecture, and Organizational Management Cloud Service Management and Adoption Workload and Data Migration Cloud infrastructure and platform deployment (using Infrastructure-as-Code and Policy-as-Code) CI/CD Pipeline Management, Testing Orchestration, and Monitoring Cloud Configuration, Posture Management and Drift Monitoring Cloud Logging and Event MonitoringSkills:cyber security, cloud, deploymentTop Skills Details:1) Experience building CI/CD pipelines, can test and deploy these2) Experience with cloud infrastructure and platform deployment using PaC (Policy as Code)3) 5+ years of experience in cloud security (AWS| Azure| GCP) at a large enterprise. Experience with cloud native tools/cloud security services JUST the security ones doesn't have to be all the others and how they get implemented and deployed into an environment, Azure, AWS or GCP, experience configuring the environment using the native tools, deploying changes in the cloud security space, need to know how to configure them, how to use them, how to manage them and how to test them. Experience/Understanding of Cloud based services, technologies and providers (eg SaaS, IaaS, PaaS, etc.) Experience with configuring cloud security native services and performing end-end UAT with key stakeholders. Experience with Azure Security Center, AWS Cloud Security Hub, or Google Cloud Security Exhibiting familiarity with Cloud Security Alliance, Center for Internet Security, ISC2, and SANS Cloud Security Standards for securing cloud applications, IaaS, PaaS, SaaS, containers, and microservices Experience with any CSPM/SSPM/CIEM/CWPP vendor solutions, and aligning cloud security to hardening standards and frameworks (CIS, NIST, ISO) Experience in building CSPM/SSPM test cases for performing proof of concepts with vendor solutionsNice to haves:3) Hands-on experience with implementing native cloud security services and WIZ platform with multi cloud environments for CNAPP. Experience with POC with WIZ platform and implementing to support multi cloud environments. Doing deployments, please ask how much of that deployment did they do? Any challenge they ran into with Wiz.io? Demonstrated passion for cyber security, good understanding of security operations, cyber defense, network security, threat intelligence, incident response.o Experience with container security and orchestration - Docker, Containers, Kubernetes, Cloud Foundry etc.o Detailed understanding of IaaS and virtualization - service orientated architecture designed around the delivery of Infrastructure components as a service.Familiar with configuration release management tools commonly used in CI/CD pipelines (e.g. Ansible, Chef, Puppet, etc.) They use Horizon Jenkins pipeline for Azure, and GitHub for AWS Excellent written and verbal communication skills to describe security event details and technical analysis with audiences within the cybersecurity organization and other technology groups Experience in other security technologies such as: Security information and event management (SIEM), IDS/IPS, Web Application Firewall (WAF), endpoint protection, Sandboxing, network- and host- based firewalls, Encryption, Threat Intelligence, Penetration Testing, etc. is a plus. Knowledge of security and privacy-related industry standards and frameworks (e.g. NIST CSF, CIS, ISO 27001 series, COBIT, HIPAA, MITRE) Experience using scripting languages (Python, PowerShell, Bash, etc.) to parse machine-generated data, interact with REST APIs and automate repetitive tasks - Python Scripting or other scripting experience to help with the UAT side of the team, validating the policies, automating the UAT testing as its very manual right now and everything will be tested before its deployed so would like to automate some of this workPreferred Qualifications: Certified Information Systems Security Professional (CISSP), or equivalent AWS Certified Solutions Architect, AWS Certified Security (or equivalent) CCSK+ (Certified Cloud Security Knowledge)Additional Skills & Qualifications:. Proficient in Microsoft Office tools (Excel, PowerPoint, Word, SharePoint) with ability to analyze data and document policy/standards/project documentation Excellent verbal and written communication skills; ability to articulate technical knowledge to non-technical audience; production of policy/standards/project documentation Ability to take ownership of an initiative/issue through completion and work in a collaborative environment. Excels at adapting to changing business needs with ability to balance multiple competing priorities in an extremely dynamic environment. Ability to proactively anticipate problems and execute solutions. Bachelor's degree in Information Technology, information security or related field Certifications: CCSK, CCAK (CSA), CCSP, CISSP, CCFP (ISC2), CISA, CRISC, CISM (ISACA), CCIE (Cisco), TOGAF, CCTA (McAfee), In-depth understanding of cloud native services and hands-on experience with implementing cloud security changes within multi cloud platforms Familiarity with financial industry laws, rules and regulations and guidance documents. Experience within Audit, Operational Risk, Compliance, Regulatory or related oversight organizations Experience in implementation of information security strategy, including compliance with industry best practices and regulatory requirements. Assist with internal efficiencies projects and development.About TEKsystems: We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company. The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.