Senior IT Security Engineer AWS CLOUD SECURITY

Lake Mary, FL

Posted: 05/30/2019 Job Number: 12820692
Our client is seeking a Senior IT Security Engineer with AWS Cloud or AWS Cloud Security Practitioner Certifications - This role performs general IT Security activities but can be broken down into two large areas of responsibility:
  • Information IT Security
    • Focused on intrusion detection, security protocols and standards, vulnerability and risk assessment of IT systems, etc.
    • This also includes best practices around security patching both internally and deployed systems.
  • CLOUD (Hosted Solutions) Infrastructure Support
    • Focused on Infrastructure definition and management
    • Network topology and security across network layers
    • Server preparation and cutover (this is our blue / green upgrade process when BPS rolls-out updates)
    • Data security (static data and in-flight SSL type connections, etc)
  • Requirements for Information Security Job Position
    • 2 to 5 years of experience in information technology or security
    • Strong communications skills, both written and oral
    • Organized, responsive and highly thorough problem solver
    • Minimum Certification of Associate's degree in Computers, Technology or related field
    • Thorough understanding of AWS Cloud Solutions Preferably has AWS Certification in one or more of the following:
      • Security, Cloud Practitioner, SysOps Administrator
    • Ability to clearly and effectively present information in one-on-one and group situations
    • Able to carry out investigations on incidences as well as document findings - Requires the ability to define problems, collect data, establish facts, and draw valid conclusions
    • Technical Knowledge - Security: UNIX, AIX, Linux, Cisco Network IDS, Cisco Host-based IDS, eTrust Access Control, ESM, and IDS. DES encryption, Digital Certificates, SSL, VPN, IPSec, TCP/IP, DNS and web security architecture, MySQL, subversion, SpamAssassin, Nmap, Nikto, Nessus, Paros
  • Common Responsibilities for Information Security Job Description
  • Actively participates in the coordination and remediation of all security incidents in the organization
  • Oversees the monitoring, investigating, and reporting of security related events
  • Creates updates and oversees execution of security assessments and analysis of systems on a daily, weekly, monthly, quarterly, and annual basis
  • Conducts assessment on the security of new applications and programs prior to installation or upgrades
  • Responsible for monitoring and responding to alerts within the information technology infrastructure
  • Responsible for monitoring and ensuring that end-users adhere to Information Technology policies, standards, and best practices
  • Responsible for ensuring that all servers and other IT related equipment is hardened for compliance and/or industry standards
  • Experience with software and security architectures
  • Ensures that company meets all security standards for internal or external audits
  • Ensures that all information technology/service diagrams are up to date and appropriately documented
  • Identifies and addresses computer vulnerabilities in internal servers, external servers, and applications
  • Oversees the administration, documenting, and monitoring inventory control for all network equipment
  • Follows the Security Incident Management Response Policy in responding to security incidents
  • Guides the Incident Response Team in handling information security incidents
  • Provides quick updates of security incidents to the network operations manager
  • Improves information security posture through the application of findings from investigation of security incidents
  • Responsible for validating and maintaining incident response plan and processes to address potential threats
  • Responsible for the compilation and analysis of data for proper reporting and metrics
  • Scans and patches applications when vulnerabilities may be present or released
  • Performs daily audits of firewall(s), log management, intrusion detection systems, and content filtering controls
  • Ensures all levels of staff are provided with relevant trainings on security matters.
  • Solid knowledge of information security principles and practices.
  • Working experience with intrusion detection systems
  • Understanding of advanced security protocols and standards
  • Evaluate and develop approach to solutions as it relates to security
  • Proactively assesses potential items of risk and opportunities of vulnerability in the network
  • Experience with security practices of Intranet and Extranet
  • Support day-to-day administration of various firewalls

Michael Guidry

Apply Online

Send an email reminder to:

Share This Job:

Related Jobs:

Login to save this search and get notified of similar positions.