drjobs Senior Cloud Security Engineer
  1. Home
  2. Jobs In USA
  3. Jobs In Kansas
  4. Jobs In Wichita, KS
  5. Senior Cloud Security Engineer Jobs In Wichita
  6. Senior Cloud Security Engineer

Senior Cloud Security Engineer

Match Point Solutions
Posted on : 24-11-2024

Employer Active

1 Vacancy
drjobs

Job Alert

You will be updated with latest job alerts via email
Valid email field required
Send jobs
drjobs
Register to Apply Apply Now
Send me jobs like this
drjobs

Job Alert

You will be updated with latest job alerts via email

Valid email field required
Send jobs
Job Location drjobs

Wichita, KS - USA

Monthly Salary drjobs

Not Disclosed

drjobs

Salary Not Disclosed

Vacancy

1 Vacancy

Posted on : 24-11-2024

Job Description

MatchPoint Solutions is a fastgrowing young energetic global ITEngineering services company with clients across the US. We provide technology solutions to various clients like Uber Robinhood Netflix Airbnb Google Sephora and more! More recently we have expanded to working internationally in Canada China Ireland UK Brazil and India. Through our culture of innovation we inspire build and deliver business results from idea to outcome. We keep our clients on the cutting edge of the latest technologies and provide solutions by using industryspecific best practices and expertise.

We are excited to be continuously expanding our team. If you are interested in this position please send over your updated resume. We look forward to hearing from you!

Senior Cloud Security Engineer
Location: Hybrid 3 days in office 2 days remote. Must be in Wichita KS
3 Months
Wichita KS
High level brief skill requirements.
Cloud Security Skills
  1. Cloud Security Risk Analysis
  2. Detection and Response Processes
  3. Cloud Security Posture Management Tools and Processes (CSPM) (Renamed)
  4. Strong AWS IAM Management
  5. Cloud Identity Entitlement Management Tools and Processes (CIEM) (New)
  6. Cloud Penetration Testing
  7. IaC Scanning
  8. Vulnerability Management and Mitigation
  9. AWS Cloud Trail and Splunk Queries
  10. Zero Trust Principals
  11. Cloud Disaster Recovery and Business Continuity (New)
  12. AWS Identity Center (New) Familiar with the AWS Serverless stack to assist with troubleshooting
  13. Lambda API Gateway Cloudfront S3 Route 53 IaC Best Practices for standardized cloud infrastructure solutions
  14. Terraform HCL and managing solutions across 150 accounts
  15. Python for scripting solutions and basic platform solutions using Lambda and containers
  16. Github and GitLab for IaC management and deployment pipeline creation
  17. AWS Organizations
  18. AWS Control Tower
  19. AWS Account Factory (New) Solutioning especially around AWS Network Services
  20. AWS Solutions Architect Associate (Preferred)
  21. Transit Gateway
  22. VPC Peering
  23. Security Groups
  24. Good understanding of basic networking Soft Skills
  25. Strong Communication both written and verbal
  26. Ability to drive and manage their own projects
  27. Ability to lead project and organize work and drive to conclusions
  28. Azure Experience as a Bonus
  29. College Degree not required but desirable
A strong candidate would be expected to contribute to the vision of the FHR Cloud Infrastructure and Security team.
Enable FHR to utilize cloud technologies in which they are easily consumable cost efficient reliable and secure so that FHRs cloud adoption provides FHR an advantage for enabling digital transformation.
The FHR Cloud Infrastructure and Security Team is responsible for:
Cloud Security Operations
Security Vulnerability Discovery and Remediation Responsible for using CSPM CIEM security tools security reviews and any other means to find areas of cloud security risk for FHR. Create monitoring and alerting processes and set expectations with customers on how to remediate the cloud misconfigurations which put our applications at risk and other security vulnerabilities within a standard SLA. Responsible to analyze the situation to understand the real risk and communicate that with the stakeholders on what risk is recommended to accept and which risk should drive action. Prioritizes vulnerabilities so that higher risk findings are addressed first. Works with software engineers and product teams to ensure good software development practices are being used to deploy secure solutions. Responsible for recurring reporting of cloud security risks to IT directors.
Workload Protection Services via Web Application Firewall Management Responsible for the creation and deployment of standard WAF rules across our workloads. Monitoring traffic for effectiveness of security protection and to catch any potential false positives. Responsible for other protections for internetfacing workloads. Responsible for creating custom rules to ensure protection of workloads without creating disruption. Logging of requests to assist with troubleshooting and reporting. Escalation of security incidents with the security operations center.
Remote Access Solutions Design and implement remote access solutions for administration of cloudbased workloads. Automation and implementation of Zscaler ZPA or AWS Client VPN services. Work in coordination with our Cloud Operations team to fulfill these requests.
Cloud Infrastructure Operations
Cloud Infrastructure Responsible for troubleshooting any cloud infrastructure issues with software engineers. Including connectivity issues capacity and performance issues. Responsible for ensuring ownership of the cloud infrastructure is defined well and all resources are owned.
IAM Management Services Creates and tests standard roles and policies for the company to use using least privilege principals. Monitors for overprivileged roles and works with customers to remediate the risk. Assists software engineers with IAM role and policy creation to ensure least privilege. Manages the roles and policies via Terraform deployed through a Gitlab pipeline to ensure standards are deployed consistently and enforced. Creates and tests new AWS service control policies. Deploys all changes using standard change control processes to reduce the risk of unplanned events.
EC2 Management Responsible for server creation automation which is used by the server management team. Escalation point for the server management team regarding cloudspecific EC2 and EBS issues. Knows the hybrid cloud networking design and assists with design changes and troubleshooting. Ensures that EC2s in our hybrid cloud environment are positioned for longterm success which enables the server team to manage them.
Cloud Service Management Responsible to review cloud services for security risks and supportability concerns. Will collaborate with customers to understand their needs and determine if a new service should be used or if existing reference architectures should be used. Will enable new cloud services by implementing new standards and reference architectures for the solution which ensures consistency and supportability.
Application Cloud Infrastructure Coordinates with software engineers and software architects to design and create solutions for applications in the cloud. To creating and maintaining standard solutions which can be deployed by software engineers. Assists software engineers and software architects with experimentation on new services.
Cloud Financial Operations
Operate our finops program that enables our software engineers and product teams to be cost efficient with our cloud spend. Discover cloud cost trends and anomalies and collaborate with product teams and software engineers to take corrective action. Create automation for remediation when necessary. Perform analysis on costs to understand if application design changes may be required or just small configuration changes are required to ultimately keep our workloads cost efficient. Provide rightsizing information for the cloud services with the most significant spend. e.g. compute and storage. Provide recurring executive level reports to ensure IT directors are seeing trends and how their teams are impacting the overall cloud cost spend.
Required Technologies: AWS AWS solutions architect and security certifications are big. Terraform python git hub git lab AWS IAM.
Preferred: Other cloud certifications are icing on the cake.
Nice to haves: CSPM InsightCloudSec: if they have it itll accelerate them. Kubernettes.
Soft Skills: Must have VERY strong written and verbal communication skills ability to drive and manage their own projects ability to lead projects and organize work.
Certifications/Education requirements: College Degree not required but desirable
Team Size/Makeup: It is currently just the hiring manager right now and the new resource. The new hire will collaborate extensively with the KGS team which handles the cloud platform aspects.
Daily Responsibilities:
Security operations and responding to findings.
Responding to finops anomaly alerts
Breakfix for AWS service or IAM permissions problems
Creating/updating/fixing existing fhr cloud services to ensure their viability.
AWS service lifecycle events and creating recommendations and solutions for product teams.
Notes:
Security Focus:The role will be approximately 5060% focused on security engineering requiring a strong foundation in cloud security and risk analysis.
Infrastructure Focus: About 3040% of the role will involve cloud infrastructure tasks supporting software engineers and managing cloud services.
FinOps Tasks:The remaining 510% of the role will involve FinOps tasks including cost management and optimization within the cloud environment.
Dan emphasized the need for a technically savvy individual who can expand and improve existing services ideally someone more technical than himself.
List of immediate work/projects for this person when they start.
  1. Implement new Standard IAM Roles across all our accounts for employees.
Ensure least privilege.
Ensure pipelines still function.
Should ready the organization for using AWS Identity Center.
  1. Review of current cloud security standards and start the continuous review process to create new standards and implement controls.
API Security scanning
Container security
  1. Migration of KGSmanaged VPC from the FHR Alkira segment. Networking changes to ensure there are not backdoors into the fhr network for the other operating companies.
  2. Create our terraform structure so that code can be managed as a team and not just in my local files.
  3. ZPA connector rollout for 3040 accounts. CentOS is deprecated. Migration to RHEL. Requires updating automation.
  4. Microsegmentation/Application fencing planning and design. Assist with Illumio POC.
  5. Account meta data verification process
Find the owners associated and set up a verification process for each account they own.

MatchPoint Solutions provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race color religion age sex national origin disability status genetics protected veteran status sexual orientation gender identity or expression or any other characteristic protected by federal state or local laws.

This policy applies to all terms and conditions of employment including recruiting hiring placement promotion termination layoff recall transfer leaves of absence compensation and training.

Employment Type

Full Time

Company Industry

Key Skills

Register to Apply
Apply Now

About Company

Match Point Solutions
Report This Job
Disclaimer: Drjobpro.com is only a platform that connects job seekers and employers. Applicants are advised to conduct their own independent research into the credentials of the prospective employer.We always make certain that our clients do not endorse any request for money payments, thus we advise against sharing any personal or bank-related information with any third party. If you suspect fraud or malpractice, please contact us via contact us page.
Register for Free

Free AI Resume Review

Get Hired 3x Faster with free, confidential review from Ai resume review service.
Order Now

Resume, LinkedIn, Cover Letter

Elevate your professional profile with expertly crafted documents including your resume, LinkedIn profile, cover letter.
Start Now

Dr.Job AutoApply

3X your job search with AutoApply's AI for faster dream job results.
Learn More

Reverse Recruiting

Never apply for a job again. We apply and track jobs for you to find your perfect match.

Similar Jobs

Senior Technical Project Manager I Unit 42

Palo Alto Networks -

Sr Principal AI ResearcherMachine Learning Engineer Cortex

Palo Alto Networks -

Senior Software Engineer

Trupanion - Seattle , WA

Resident Engineer Senior Inspector

Turner & Townsend - Los Angeles , CA

Senior Environmental Engineer - PFAS

Aecom - San Diego , CA

Senior Environmental Engineer - PFAS

Aecom - Chicago , IL

Senior Environmental Engineer - PFAS

Aecom - San Antonio , TX

Senior Environmental Engineer - PFAS

Aecom - Houston , TX
  1. Home
  2. Jobs In USA
  3. Jobs In Kansas
  4. Jobs In Wichita, TX
  5. Senior Cloud Security Engineer Jobs In Wichita
  6. Senior Cloud Security Engineer
About Drjobpro.com

Dr. Job is an online platform that connects employers with skilled job seekers, facilitating the search for job opportunities and top talent. Established in 2015. Dr. Job Pro has emerged as the world premier job portal, attracting thousands of job seekers every day from all over the world.

Follow Dr.Job

LinkedIn Drjobpro Facebook Drjobpro Twitter Drjobpro Instagram Drjobpro Youtube Drjobpro Tiktok Drjobpro SnapChat Drjobpro

Dr Job FZ LLC. 2025 © All Rights Reserved

Terms of Use Privacy Policy Cookie Policy

Company

About

How it Works

SiteMap

Contact Us

Blog

Popular Searches

Popular jobs in worldwide

Employer

Post Job Free

CV Search

ATS Partners

Job seeker

Job Seeker Login

Job Seeker Register

Search Jobs

AI Job interview

AutoApply

Free Resume Review

Resume Writing

Reverse Recruiting

Companies by Location

Jobs by Countries

Jobs In Saudi Arabia

Jobs In Kuwait

Jobs In Qatar

Jobs In Bahrain

Jobs In Egypt

Jobs In Jordan

Jobs in USA

Jobs in UK

Jobs in India

Change Country