Cloud Security Engineer - SaaS

Location: Charlotte (preferred), NC or Detroit, MI

The engineer is part of a broader team of security engineers reporting to the Sr. Director, Cloud Security who are responsible for developing, deploying, and integrating technical controls and tools to meet specific security requirements, as well as defining processes and standards to ensure that security configurations and tools are maintained. This is a project focused resource within the organization and will focus on designing and implementing both technologies and governance processes focused on our SaaS platforms. This resource will have potential opportunity to transition into a longer-term engagement to continue to mature and improve the SaaS security service.

The Work Itself

• Define and mature cloud-focused security policies and controls (governance, processes, frameworks)
• Identify, Implement, and Operationalize security technologies and processes to improve visibility and reduce risk
• Leverage data analytics to influence our cloud security posture
• Partner with other technical leaders throughout the organization to refine and mature our security posture for cloud-based technologies and platforms, as well as identifying and maturing our application security capabilities
• Consult with project teams to ensure that platform architecture has proper security controls in place (focused on Cloud Providers / SaaS engagements)
• Engage as needed in other Cloud Security efforts where skills may overlap: Cloud Platform Security and DevSecOps / Pipeline Security

The Skills You Bring

• Platform integration experience with demonstrated technical expertise in two or more technology areas (compute, storage, network, data, etc)
• Strong background in information security practices, controls, and governance (certifications such as CISSP, CCSP, CCSK, SSCP, CSSLP preferred)
• 4+ years of experience as a technical resource within an IT organization (enterprise / matrixed organization preferred)
• 2+ years of managing SaaS platforms with deep understanding of Data, Federated Authentication, and Configuration Management concepts and integration with enterprise controls
• Experience with cloud platforms with strong knowledge of both cloud provider and data security considerations (operational experience preferred for AWS, Azure, GCP, etc)
• Working knowledge of CASB, SSPM, and CSPM platforms and processes
• Strong soft skills: builds partnerships, translates complexities into simple terms, ability to maintain focus on objectives
• Highly proficient in drafting technical documents: process/procedures, standards/policies, architectures, etc)
• Experience with automation, Infrastructure as Code and DevOps + CI/CD tools and processes

If you think this position is a good fit, please reach out to me - feel free to call, text, e-mail, or apply to this posting!

Brett Middleton

bmiddleton@alinestaffing.com

#ALINE11