Listing Description
Job Description
Mandiant Security Transformation Services helps organizations build an effective security operations program that minimizes organizational risk and reduces the impact of security breaches. With targeted focus in cloud architecture, our consultants work from initial assessment, on-site workshops to explore clients cloud environment, configuration review of security controls, to detailed practical technical recommendations to harden the cloud environment, enhance visibility and detection, and improve processes to reduce the risk of compromise.
As a Cloud Security Architect, you are responsible for developing and overseeing a cloud computing strategy for our customers, as well as responding to cloud-related breaches. This includes cloud adoption plans, cloud application design, and cloud management and monitoring. You will need to apply your cloud security skills, cloud network architecture, security hardening, and logging enforcement skills to assist clients with containment and remediation workstreams. The cloud architect will provide customers with industry best practice and insight regarding application architecture and deployment in cloud environments. The successful candidate will possess strong consulting skills, be adept in leading multiple projects under tight deadlines, and possess in-depth experience in security event monitoring, cyber threat intelligence, and/or computer incident response.
What You Will Do:
Perform technical security configuration assessments of a client’s cloud platforms - such as Microsoft Azure, Amazon Web Services (AWS), and Google Cloud Platform (GCP).
Perform technical security configuration reviews for common cloud-based SaaS platforms, including Microsoft Office 365 (O365).
Guide clients in the creation of optimized cloud solutions that deliver enterprise-grade security, compliance, and responsiveness to the latest cloud-based threats and attacks.
Architect cloud services and mitigate risks
Assist with defining and developing appropriate governance for a cloud strategy
Provisioning and automating cloud services
Orchestration of cloud workflows
Qualifications
Demonstrate a deep understanding of cloud computing concepts and how security controls are applied to those cloud-based technologies. Example cloud security concepts include, but are not limited to:
Architecture & Networking
Identity & Access Management
Securing the CI/CD Pipeline
Secrets and Data Protection
Logging, Detection, and Response
Security Controls for Containers (e.g., Docker, Kubernetes, etc.)
Experience running Cloud services with a combination of onsite and on cloud hosting provider experience (AWS, Azure, Google Cloud)
Deep understanding and implementation of industry-leading practices around cyber risks and Cloud security for clients’ cloud security frameworks using industry standards such as CIS Benchmarks, Cloud Security Alliance, and NIST SP 800-144, 800-145, 800-291, and 800-322.
Experience advising customers on cloud architecture and design concepts based on compliance and regulatory standards (e.g., PII, PCI-DSS, PHI, GDPR, HIPAA).
At least a minimal understanding of a programming or scripting language and strong knowledge of scripting, programming or application programming interface (API) interaction
Must understand governance and convey governance principles to cloud computing in terms of policies
Experience with Incident Response within cloud environments and applications
Additional Qualifications:
Bachelor’s degree in a technical discipline (or equivalent work experience)
Willingness to travel up to 50%
Experience in preparing architecture diagrams and writing approach papers
Certifications related to specific Cloud Platforms (e.g. AWS, Azure, GCP, etc.) or industry-standard cloud certifications (e.g. CCSP, CCSK, etc.)
Proven ability and understanding of the components that comprise a successful cloud information security program
Additional Information
As a U.S. federal contractor, Mandiant has adopted a COVID-19 Vaccination Policy to comply with our obligations under applicable laws and requirements. This position may be covered under Mandiant’s COVID-19 Vaccination Policy, as required in order to support federal contracts, access company offices and/or attend in-person meetings and work events. If covered under this policy, proof of vaccination against COVID-19 may be required as a condition of hire. At Mandiant we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.
This is a regionally-based role that must be located in: Washington, California, Oregon, New Mexico, or Nevada
Listing Details
- Citizenship: Not Provided
- Incentives: Not Provided
- Education: Not Provided
- Travel: Not Provided
- Telework: Full Telecommute