Collaborates on strategy creation of hardened and secure cloud environments; establishs role access based controls for cloud applications, ensuring compliance with applicable regulations such as HIPAA; reviews and correlates security issues identified by tools and/or external sources to ensure that any vulnerabilities or security weaknesses are addressed and mitigated; monitors security advisories for all deployed systems and work with Cloud Infrastructure Administrators, Operations and developers to fix vulnerabilities; responsible for documenting security related incidents, determining root causes and recommending corrective actions; reviews cloud configuration and architecture changes to meet business requirements and security policies; ensures compliance with security policies and perform regular and ad-hoc penetration testing and remediation to protect against unauthorized systems and data access and discover vulnerabilities within cloud subscriptions and on-premise information systems; remains current with alerts, trends, protocols, and issues in the security industry, including current and emerging technologies, products, services, and standards.
Education: Bachelor’s Degree in Computer Information Systems or Information Technology, Cybersecurity or Information Assurance or equivalent work experience of 5 or more years.
Certifications: GIAC Cloud Security Essentials (GCLD), GIAC Public Cloud Security: AWS, Azure, and GCP (GPCS)