Job Title: Data Security Engineer / Specialist (Cohesity,
PKI/Venafi, Azure Security)
Location: Portland,OR
Years of Experience-10 Years
Job Summary
We are seeking a highly skilled Data Security Engineer to
design, implement, and manage enterprise data protection and security
solutions. The ideal candidate will have strong expertise
in Cohesity, PKI (Public Key Infrastructure) with tools
like Venafi, and Azure Cloud Security, along with a broader
understanding of data protection, encryption, identity security, and compliance
frameworks.
Responsibilities
- Cohesity Data Protection
& Backup Security:
- Design, implement, and
manage Cohesity backup and data management solutions.
- Ensure secure backup
architecture including immutability, ransomware protection, and disaster
recovery.
- Implement backup
security controls, access governance, and disaster recovery capabilities.
- Develop data protection
controls across on premises, hybrid, and cloud environments.
- PKI & Certificate
Management (Venafi):
- Design and manage
enterprise PKI infrastructure.
- Ensure compliance with
certificate governance and cryptographic standards.
- Manage HSM integrations
and key protection strategies.
- Azure Cloud Security:
- Implement and maintain
Azure security controls across IaaS, PaaS, and SaaS.
- Configure and manage
Azure Key Vault for key and secret management.
- Utilize Azure Defender
/ Microsoft Defender for Cloud.
- Enforce identity and
access management via Azure AD, RBAC, and Conditional Access.
- Data Protection &
Governance:
- Implement encryption
controls for data at rest and in transit.
- Define and maintain
data classification and retention policies.
- Support compliance
requirements including GDPR, HIPAA, PCI DSS, ISO 27001, SOC2, NIST, and
DORA.
Mandatory Skills (Must Have)
- Expertise
in Cohesity (Backup, recovery, data protection, ransomware
protection).
- Strong understanding
of PKI fundamentals and operations.
- Experience
with Venafi (Certificate lifecycle management and automation).
- Proficient in Azure
Cloud Security, specifically Azure AD.
- Knowledge
of Compliance Management and Assessments principles and
practices.
Preferred Skills (Good to Have)
- Experience with
additional cloud security tools and frameworks.
- Familiarity with data
loss prevention (DLP) technologies.
- Knowledge of security
compliance frameworks beyond those listed in mandatory skills.
- Certifications in
relevant areas (e.g., CISSP, CISM, Azure Security Engineer).
Qualifications
Bachelor's degree in Computer Science, Information
Technology, or a related field. A minimum of 7 10 years of experience in data
security, with a focus on enterprise level solutions. Strong analytical and
problem solving skills, along with excellent communication and collaboration
abilities.