• 3+ Years of Azure Security Experience with 8+ years of Information Security experience
• Experience implementing Cloud Security Posture Management (CSPM) and Cloud Workload Protection Platforms (CWPP). Need Kusto Query language (KQL) experience. MS Defender experience required.
• Proficient experience with Power BI to generate reports on CSPM(MS Defender) findings to increase visibility, help in remediation efforts and to manage risk.
• Terraform experience (establishing guardrails for developers/deployments)
• Must be comfortable working in a fast-paced environment with minimal guidance

Job Description

The Product Security team ensures the security of our products and services and as domain experts for our engineering teams and IT teams to protect our customers’ data in today’s dynamic threat landscape. We are a team of highly skilled security engineers that specialize in security research, penetration testing, and security architecture. We evaluate a broad range of technologies including complex web applications, IoT platform, distributed processing, Cloud environments and isolation of entrusted code. As a Principal Engineer of Cloud Security you will lead to protect our Cloud Infrastructure. Your passion for security and in-depth knowledge of Cloud Security will ensure that you deliver high impact results.

Responsibilities

• Engineering, implementing and supervising security measures for the protection of Cloud Infrastructure and integrations
• Perform security architecture reviews for Cloud Infrastructure for existing and new services
• Conduct assessments of security controls and configuration and continuous verification with automation
• Threat Modeling and Pen Testing
• Design and implement Cloud Infrastructure Monitoring use cases.
• Implement and Manage DDOS and WAF protections
• Security Tool Development
• Perform Security training and outreach to internal development tools.
• An advocate for policy of code, security, and automation. Embracing DevSecOps towards all cloud activities

Requirements

• B.S. or M.S. in Computer Science, Electrical Engineering or related experience
• At least 6+ years of experience in Information Security and 3+ years of experience in Cloud Security.
• Demonstrated success and influence in the Cloud Security space. Experience defining security policy, technology requirements, and control objectives.
• Experience in WAF and DDOS
• Experience in Container Security and EKS
• Experience in Logging, monitoring, and responding to detected incidents in the cloud environment.
• Meaningful experience in High level programming languages (Java, Python, C, C++).
• Detailed understanding of Cloud Security fundamentals (Cloud networks and Cloud-based Systems), including cryptography and the shared responsibility model
• Professional experience architecting/operating solutions and security frameworks built on AWS, Azure, or Google Cloud.
• Expert knowledge of secure infrastructure architectures, application architectures, encryption, Cloud Security and broader security technologies.
• An interest and desire to stay abreast of emerging security threats, vulnerabilities, and controls
• Experience in Terraform required.
• Experience in implementing Cloud Security Posture Management (CSPM) and Cloud Workload Protection Platforms (CWPP) is required
• Azure Experience is required

About TEKsystems

We’re partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That’s the power of true partnership. TEKsystems is an Allegis Group company.

The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.