Engineer Cloud Information Security at Hilton Grand Vacations (Orlando, FL)

Job Description

DescriptionCloud Information Security Engineer In this role, you will work with individuals from a variety of technical and functional disciplines to apply cloud security engineering expertise and innovation to design, develop, and implement solutions and technologies to address cloud security challenges and opportunities, which includes threat-based engineering, new architecture, tools, and techniques for the reverse engineering of systems. The Information Security Cloud Engineer will conduct proof of concept prototyping, product evaluations, development, and testing. This includes performing research and development of unique, cutting edge technical capabilities for understanding, assessing, and analyzing information security and cloud technologies. This Information Security Cloud Engineer position supports Information Security, Cloud Security, and IT service offerings. Responsibilities also include but are not limited to: •Develop and carry out information security plans and policies •Develop strategies to respond to and recover from a security breach. •Develop or implement open-source/third-party tools to assist in detection, prevention and analysis of security threats •Awareness training of the workforce on information security standards, policies and best practices •Installation and use of data encryption and other security products and procedures •Develop strategies to secure cloud workloads in a DevOps/Agile environment •Manage and respond to alerts from the SIEM, AV, and FIM systems. •Develop and maintain CIS hardening standards. Additional Responsibilities Include:  •Conduct periodic network scans to find any vulnerability and remediate findings •Conduct penetration testing, simulating an attack on the system to find exploitable weaknesses  •Monitor networks and systems for security breaches, through the use of software that detects intrusions and anomalous system behavior •Investigate security breaches •Lead incident response, including steps to minimize the impact and then conducting a technical and forensic investigation into how the breach happened and the extent of the damage
Qualifications

Basic Requirements:

• Bachelor's Degree or additional experience in lieu of Bachelor's Degree

• 3+ years of experience in an information security role

• Experience with securing cloud platforms

• Demonstrated experience with PowerShell

• Experience with cloud security programs and policies

• Experience with cloud security tools

• Experience with multi-factor authentication technologies

• Proficient in oral and written English

• Experience with Azure automation, controls and ARM Templates

Preferred Qualifications:

• Recognized cloud certification (CSSP, Microsoft Azure Solutions Architect, AWS CSA, or others)
•     Understanding of regulatory frameworks such as PCI, PII / Privacy Shield, SOX, GDPR, etc.

• Demonstrated understanding of authentication protocols, including Kerberos, SAML, OpenID Connect, and OAUTH

• Demonstrated understanding / proficiency in O365 technologies and controls

• Recognized security certification (CISSP, CEH or others)

by via developer jobs - Stack Overflow