Cloud Security Engineer

Cloud Security Engineer - Charlotte, NC

12-month W2 Contract

Responsible for protecting the enterprise against unauthorized cyber activity by being a subject matter expert in network defense systems, cloud security and networking. This position designs, implements, and maintains network defense solutions.

Must haves:

• Firewall (Palo Alto)
• Networking experience
• Terraform is a big plus

Position focuses on improving cybersecurity capabilities, driving implementation of cybersecurity strategy. Enhancing the cybersecurity posture of the enterprise. The ideal candidate would have a solid understanding of:

• Enterprise Cloud, Corporate network and Data Centers.
• Intermediate Cyber Architecture knowledge.
• Hands-on technical experience with Network Defense Systems (i.e., Firewalls, WAF/CDN, networking infrastructure).
• Terraform, and
• Project Management.

Employees at this level solve complex problems, manage work plans, and provide leadership to others in areas of specialization, with no supervision and increased latitude for decision making. Incumbents function in lead roles providing guidance to others.

Responsibilities & Duties:

• Stay informed on evolving technology. This role requires ongoing skill development, and the ability to learn new technology and software platforms.
• Leads projects and provides project management concepts to ensure project delivery and management.
• Able to manage multiple projects and initiatives simultaneously.
• Installs, configures, tests, operates, maintains, and manages network defense systems including hardware and software that control the sharing and transmission of information securely.
• Operationalizes new security solutions for Cybersecurity, IT, and other business units.
• Support investigation/troubleshooting efforts during service disruption events. Diagnose and resolve customer reported system incidents, problems, and events.
• Represents cybersecurity organization professionally in interaction with internal business partners and other IT Support groups.
• Collaborates with security architecture frequently to understand, apply, and enforce security requirements.
• Provide mentorship and support for teammates.
• Make recommendations to optimizing current operations processes, procedures, and policy.
• Responsible for understanding the global threat environment and general security best practices.
• Drive continuous improvement of processes and procedures to improve analysis, detection, and mitigation of incidents in support of the overall Cyber Defense mission.
• Collaboration as appropriate with leadership and other key stakeholders.
• Maintains up-to-date documentation of the security infrastructure and security strategies.
• Understands enterprise security standards/requirements. Enforces cybersecurity standards.
• Participates in all daily support & on-call rotation duties.
• Provides increased availability during Storm Mode conditions and CIRT events.
• Adheres to proper Change Management and Human Performance requirements and processes.
• Participates/leads firewall lifecycle efforts.

Desired Qualifications:

• Demonstrated capability to work with little management oversight and must have strong personal initiative.
• Motivated self-starter with strong written and verbal communication skills, and the ability to create complex technical reports on analytic findings and provide briefings to various levels of staff / management.
• Ability to work in high pressure situations and within a team environment.
• Experience with writing and editing technical documentation and operational procedures.
• Demonstrated effective problem solving & analytical skills
• Direct background or exposure to cyber security operations
• Knowledge of network monitoring, analysis, troubleshooting, and configuration control technologies
• Bachelors degree in Cybersecurity, Computer Science, IT, or other closely related discipline
• Hands on experience working with Palo Alto Networks next-generation firewalls
• Hands on experience working with Cisco ASA firewalls
• Advanced knowledge of Cloud security tools (i.e., Web Application Firewalls)
• Experience coding Cloud infrastructure (i.e., Terraform and CloudFormation)
• Palo Alto Networks Certified Network Security Engineer (PCNSE)
• Certified Information Systems Security Professional (CISSP)
• SANS/GIAC Certifications (GCIAIHFA)
• Cisco CCNA
• Cisco CCNP Enterprise/Security
• Knowledge of networking and Internet communications fundamentals (i.e. devices, device configuration, hardware, software, applications, ports/protocols, addressing, network architecture and infrastructure, routing, operating systems, etc.).
• Network engineering/design/project experience.
• Experience in Web security and compliance experience (e.g., Firewalls, IDS/IPS systems, DDOS prevention and PCI, HIPAA, FIPS, etc.)
• Experience with API solutions and integration.