Sr Cloud Security Architect – GCP (W2 Contract only)
Job Description
Company: CBTS
Location: Sterling, US
Role: Sr Cloud Security Architect
Location: Sterling VA
Duration: 6 Months
Pay Rate: $106/hr on W2
Job Responsibilities
• Act as a Cloud Security Subject Matter Expert (SME) for client’s Infosec department.
• Identify opportunities to reduce cloud security risk for the client, solution, and lead implementations.
• Create design artifacts to enable members of the Cloud Security team to implement solutions (built in-house or purchased from vendor).
• Partner with product teams to design secure network and serverless architectures.
• Provide strong IAM Policy guidance to enable product teams to implement least privilege access.
• Review cloud architecture and advise development teams on strong security design principles and identification of issues prior to deployment of systems or features.
• Interface with Public Cloud providers to improve the security feature set of their products.
• Interface with cloud security vendors to evaluate features and determine proof-of-value.
• Maintain an awareness of cloud-costs and the cost implications of the security controls implemented.
• Mentor junior members of the team.
• Create and maintain documentation as it relates to cloud security designs/configurations, processes, standards, and recommendations.
• Collaborate with senior management and department leaders to assess near- and long-term cloud security needs.
• Staying current with the latest cloud threat mitigation tools and techniques
Must Have Skills / Requirements
• Experience Designing and Implementing systems that support multiple users.
• 5+ years of experience; Design, Implementation, and Maintenance of systems used by users.
• The ability to evaluate technical documentation and diagrams for cloud environments and identify security issues in those designs.
• 5+ years of experience; Security Architectural Reviews and ability to create design artifacts – including infrastructure diagrams.
• Ability to review technical configuration and identify mitigating controls for security related misconfigurations
• 5+ years; Experience Managing Exception Requests
Candidates must have GCP Security experience.
Nice to Have Skills / Preferred Requirements
• AWS Certifications – AWS Solutions Architect, AWS Security Specialty
• GCP Certifications – Associate Cloud Engineer, Professional Security Engineer
• Security Engineer Certifications – CISSP, CompTIA Security+
• Previous Experience with Wiz, Splunk, Brinqa, integrations with Slack and Jira
Soft Skills:
• Excellent verbal and written communication skills with a strong attention to detail.
• Remains productive while rapidly switching context.
• Thirst for knowledge and constantly driven to stay current with evolving threat landscapes.
Technology Requirements:
• Strong understanding of cloud-based infrastructure components with specific understanding of the security risks presented in a decentralized and hybrid environment.
• Broad understanding of information security and compliance risk, and how those apply to Public Cloud.
• Comfortable automating processes start to finish and can work closely with cloud solutions engineering and product teams to help integrate security into their existing processes.
• Proficient in at least one scripting language (python, Nodejs, Golang).
• Core understanding of IP Networking, routing, VPNs.
• Hands-on experience with some the following:
• Docker and Kubernetes
• Developing & Securing Serverless applications
• Security administration in AWS/GCP/Azure
• GitHub Security
• Infrastructure as code tools (Pulumi, Ansible, CloudFormation, Terraform)
• Command Line experience (Bash, Powershell, AWS-CLI)
• Cloud Network (VPC) engineering
• Cloud native security related tools (AWS Guard Duty, AWS WAF, GCP Security Center)
• Elastic Stack
Education / Certifications
• Bachelor’s degree in computer science, Information Security, or related field.
Source: LinkedIn
