Senior Cloud Security Engineer

BlueVoyant

BlueVoyant

Other Engineering
Remote
Posted on Jun 7, 2024
Senior Cloud Security Engineer
Location: Remote - East or Midwest United States Preferred
US Citizenship Required

Conquest Cyber, a BlueVoyant Company
, understands that our enemies are not simply amateur hackers, but highly motivated, well-funded nation states and criminal organizations. By targeting our nation’s defense and critical infrastructure sectors, cyber-attacks threaten to disrupt the way we live. This is where we sit – at the forefront of this quiet and distributed conflict to ensure cyber resiliency for the sectors critical to our way of life. At Conquest Cyber we build adaptive risk management programs where innovation is most needed, the sectors that protect our way of life. Be part of a world class team, enjoy the challenges and rewards of working with some of the leading U.S. agencies and companies, protect assets that are vital to our society.

Our consulting practice streamlines complex digital transformations to empower organizations with cyber resiliency. Our team of expert cloud security engineers collaborates seamlessly with our organizational change and IT project management consultants, ensuring efficient and effective deployments and implementations. The Senior Cloud Security Engineer will advise on cloud security and compliance best practices, while also configuring, reviewing, and consulting on Azure security environments for our customers.


This role will focus on the design and development of information security architecture and compliance solutions to ensure technology initiatives are implemented to make our customer’s Azure cloud environments more secure. This role is responsible for securing enterprise information by identifying network and application security requirements, planning, implementing, and testing security controls and procedures. The ideal candidate will partner closely with our sales teams and other business units as part of a larger sales strategy leading to creating transformational security strategies for our customers.

Responsibilities
  • Own successful implementation of Azure and M365 solutions
  • Support internal teams to execute comprehensive Azure Cloud security architecture strategies, frameworks and reference models that support business needs and objectives in complex customer environments
  • Meet regularly with customers and lead workshops on the implementation and management of Microsoft security and compliance solutions
  • Establish strong and lasting relationships with key stakeholders and decision makers in client organizations
  • Develop, test and implement Data Loss Prevention policies to audit and control the flow of sensitive information in customer environments
  • Create technical roadmaps, project plans, requirements, designs, and implementation plans for Azure Cloud solutions
  • Partner closely with enterprise architects to identify and mitigate risks, perform security reviews, design top tier security practices, and deliver strategic, innovative cloud-based security offerings
  • Work with customers to understand system requirements and design comprehensive Microsoft Purview solutions for data governance, compliance, and risk management.
  • Analyze threats and current security controls to identify gaps in current defensive posture
  • Develop education and mentoring opportunities for more junior consultants
  • Automation of repetitive IT (Information Technology) tasks
  • Willingness and ability to achieve and maintain MSFT technical certifications relevant to the role

Requirements
  • Advanced specializations across all elements of Microsoft Security, including Purview, with the ability to communicate security and risk-related concepts to key partners
  • Experience implementing Enterprise Mobility and Security Suite (EM+S), Advanced Threat Protection (ATP), Azure Information Protection (AIP), Intune, and Purview
  • Experience with the implementation of compliance, data loss prevention, data classification, data governance, and risk management solutions across Microsoft 365 and Azure.
  • Experience managing and implementing Azure Key Vault, Azure Security Center, Azure Operations Management Service, Log Analytics, and Azure Sentinel
  • Extensive knowledge and experience with developing Cloud Security Frameworks using industry best practices such as those from the Cloud Security Alliance (CSA) and NIST (National Institute of Standards and Technology) CSF (Cyber Security Framework) and regulatory requirements such as HIPAA, HITRUST, and PCI-DSS
  • Ability to draft proper technical documentation to capture GRC solution design and configuration to meet customer needs
  • Motivated self-starter who loves to solve challenging problems and feels comfortable working directly with customers and other members of the engineering organization
  • Highly organized, detail-oriented, excellent time management skills, and able to effectively prioritize tasks in a fast-paced, high-volume, and evolving work environment

Qualifications
  • Bachelor’s degree from an accredited university preferred but not required
  • Minimum of 8-10 years of experience as a Security or Cloud Engineer/Architect in a service-oriented architecture for cloud-based services, or 5 years of secure cloud engineering combined with 5 or more years of traditional data center engineering and architecture
  • US Citizenship required

Preferred Competencies
  • Microsoft (MS-500, AZ-500, MS-100), CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager) certifications
  • Willing to work in a fast-paced environment to support the needs of rapidly growing businesses
  • Ability to balance multiple projects at one time while maintaining attention to detail
  • Maintain a positive, solutions-focused attitude
  • Ability to use good judgement and keep client information confidential
  • Bold, confident & open to feedback
  • Strategic, analytical, collaborative
  • Adaptive problem solver with grit
  • Acumen, emotional stability, and high learning agility
  • Mission oriented
  • Experience with Varonis, and other DLP solutions, a plus
  • Willingness to travel to assigned accounts on a limited basis (less than 10%)


About BlueVoyant

At BlueVoyant, we recognize that effective cyber security requires active prevention and defense across both your organization and supply chain. Our proprietary data, analytics, and technology, coupled with deep expertise, works as a force multiplier to secure your full ecosystem. Accuracy! Actionability! Timeliness! Scalability!

Led by CEO, Jim Rosenthal, BlueVoyant’s highly skilled team includes former government cyber officials with extensive frontline experience in responding to advanced cyber threats on behalf of the National Security Agency, Federal Bureau of Investigation, Unit 8200, and GCHQ, together with private sector experts. BlueVoyant services utilize large real-time datasets with industry leading analytics and technologies.

Founded in 2017 by Fortune 500 executives, including Executive Chairman, Tom Glocer, and former Government cyber officials, BlueVoyant is headquartered in New York City and has offices in Maryland, Tel Aviv, San Francisco, London, Budapest, and Latin America.

All employees must be authorized to work in the United States. BlueVoyant provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, BlueVoyant complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities.

Disclaimer: Please note that pursuant to contractual requirements and applicable law, in order for employees to perform work on some of the company’s federal contracts, U.S. citizenship is required. Accordingly, an employee’s ability to perform work on such contracts is contingent upon the company’s verification of the employee’s citizenship status. Furthermore, individuals may be subject to additional background checks and fingerprinting.


BlueVoyant Candidate Privacy Notice

To understand how we secure and manage your personal data upon submitting a job application, please see our Candidate Privacy Notice, which can be found here - Candidate Privacy Notice

BlueVoyant Candidate Privacy Notice

To understand how we secure and manage your personal data upon submitting a job application, please see our Candidate Privacy Notice, which can be found here - Candidate Privacy Notice