Fwd: Urgent Requirement!!!Cloud Security Architect Location – Seattle, WA
taran N
INTERVIEW TODAY
Seeking Cloud Security Architect with a minimum of 10 years’ experience with large-scale Enterprise Security, Cloud Architecture and deployment into Corporate Application delivery environments.
Ideal Candidate:
· 5 years’ experience with creating Cloud Security Strategy and Security Reference Architectures, Technical Security Standards for organizations moving to the Cloud
· 7 years’ experience with Secure Application Development (Enterprise, mobile, web apps) using Hybrid Cloud – On Premise and the Public Cloud. Familiar with where security needs to be supplemented when higher security is required.
· Skilled in Container and Microservice Technologies, AWS or Azure Security, Cloud Security Alliance Control Matrix expert.
· Deep insight into Cloud - IAAS and PAAS Security Controls (AWS, Azure, GCP, VMware, etc.).
· IAM: Authentication, Authorization, MFA, Federation with Active Directory.
· Infrastructure Security and Integrity: Infrastructure Segmentation, Operating Systems and Application Repository, Server Security - Secured Enhanced Linux (RHEL), File Integrity / Data Tamper Monitoring, Network/Security Monitoring.
· Experience with Hardening the infrastructure, Baseline Device Hardening: OS, VM, and Mobile Device Hardening to ensure Confidentiality, Integrity and Availability (CIA).
· Skilled with Encryption: Data-at-Rest and Data-in-Transit, Security Policy Enforcement Points
Application Security & Secure Coding:
· Experienced with Threat Modelling tools for Enterprise, mobile and web apps.
· Understands Static Code Analysis, Dynamic Code Analysis, Penetration testing and has helped companies remediate coding vulnerabilities and issues.
· Familiar with Agile Development and knows where to insert security controls and tools into the DevOps Lifecycle without impeding on agility.
· Perform security related services and process assessments and evaluations based on NIST, OWASP, NIST, PCI-DSS, CWE/SANS, CSA guidelines.
· Authentication and Password Management, Session Management, Access Control, Input Validation, Output Encoding, Cryptographic Practices, Error Handling and Logging, Data Protection, Communication Security, System Configuration, Database Security, File Management, Memory Management, General Secure Coding Practices.
Specialties: Security Systems:
· Cloud and Container Technologies (Docker) – SaaS, IaaS, PaaS.
· Web Application security, Vulnerability management: Application Firewalls, SEIM, Anti-Virus.
· Data Loss Prevention (DLP), FIM, Secure coding and configuration standards
· VPN technologies such as PKI, IKE, IPSEC, SSL/HTTPS and digital certificate
· Information security practices: PCI-DSS, ITGC’s, HIPAA and Privacy
Industry Certifications:
Certifications: CISSP, CISM, AWS Certification, CEH, Security +, CCNP preferred.
Thanks
Taran