RESPONSIBILITIES:
Kforce has a client in Newport Beach, CA that is seeking a DevOps Security Engineer for a remote opportunity. The DevOps Security Engineer will design and implement automation frameworks, security policies, and security best practices for public cloud platforms, and develop a roadmap to move towards identity-based zero-trust model. This role will work with enterprise cloud architect(s) to integrate solutions that align to zero-trust and defense in depth models, and consult on enterprise cloud security strategy and participate in maturity mapping activities. Additional duties:
Network Security
Microsoft Antivirus
Wireshark
Authentications
Public Key Infrastructure
Kforce has a client in Newport Beach, CA that is seeking a DevOps Security Engineer for a remote opportunity. The DevOps Security Engineer will design and implement automation frameworks, security policies, and security best practices for public cloud platforms, and develop a roadmap to move towards identity-based zero-trust model. This role will work with enterprise cloud architect(s) to integrate solutions that align to zero-trust and defense in depth models, and consult on enterprise cloud security strategy and participate in maturity mapping activities. Additional duties:
- DevOps Security Engineer will ensure security of all assets in the cloud by integrating security best practices for identity-based security, shared secrets, key rotation, and other security requirements; Work with corporate security team to enforce policies and deploy cloud security tools to protect and monitor access
- Assess, harden, and develop secure infrastructure as code, Terraform modules, golden images, and other resources for consumption by application developers
- Work within an Agile methodology to prioritize and organize work efforts
- DevOps Security Engineer will mentor others in the principles and best practices of cloud security and secure-by-design deployments
- Develop cloud monitoring capabilities, dashboards, and associated KPI/KRIs
- Implement event-driven automations on cloud-native tooling (e.g. Lambda, Step, etc.) to respond to security incidents
- Develop response artifacts for security incidents, internal and external audits, security assessments, and risk findings
- Collaborate with people at all levels in the organization; Closely work with business stakeholders, support team and engineering teams in providing solutions
- Recognized as an expert within the organization both within and beyond own function. Interprets internal or external business issues and recommends process, product, or service improvements
- BS in Computer Science and/or Engineering, or equivalent experience and certifications (AWS or Azure Security)
- 8+ years of experience in an applicable cloud, infrastructure, or software engineering role
- 2-4 years of hands-on experience in managing cloud security and/or hardening cloud platforms and resources
- Experience implementing and managing cloud security tooling such as AWS Security Hub, Microsoft CAS, AWS Inspect, AWS GuardDuty, or similar applicable tools
- Ability to communicate complex details in a way that non-technical people can understand
- Experience working as part of a Scrum or Agile team
- Strong background in network, OS, and API security
- Adept in at least one programming language such as Python, Java, or Node.JS. Experience with bash and PowerShell as well as the command-line interface to at least one major cloud service, preferably AWS CLI
- Experience leveraging configuration management platforms such as Ansible, CloudGuard, or others
- Effective communicator with the ability to interact with a wide variety of stakeholders and with experience presenting to non-technical business audiences
- Preferred: Experience writing Terraform
Recommended Skills
Intrusion Detection And PreventionNetwork Security
Microsoft Antivirus
Wireshark
Authentications
Public Key Infrastructure