Listing Description

About This Role – Cloud Security Engineer

Genesis is seeking a highly capable Cloud Security Engineer, who will be responsible and will primarily focus on maturing and scaling our cloud security efforts. The candidate will be exposed to a wide range of challenges, from securing service deployments and account permissions, to improving the cloud monitoring and visibility capabilities of our Enterprise Security team.  This role can be remote.

Responsibilities:

• Work with the Security team to strengthen Genesis’s Cloud Security Strategy and posture by partnering with Engineering teams, Infrastructure Teams and Tech team to design and implement effective cloud security controls.


• Creating cloud-based programs including implementing identity and access management and securely configuring cloud environments.


• Enable teams by promoting best practices in day-to-day application development tasks.


• Perform continues posture assessment and compliance remediation across cloud resources, from data encryption to workload protection by leveraging CSPM technologies.


• Leverage AWS native services and other Security tooling to improve Cyber Defense team monitoring and incident response capabilities


• Implement AWS Security best practices as guided by the AWS Well Architected Framework


• Build integrations for our security event monitoring platform to develop mechanisms to detect and respond to threats.


• Demonstrate leadership by teaching, mentoring, growing cloud security expertise, and setting technical direction and priorities for infrastructure security goals.


• Work toward increasing and maintaining security monitoring coverage, and take a ownership role in responding to (Cloud) incidents.


• Identifying and defining security requirements for Cloud systems in an agile manner and using critical path, responding to business needs and threat landscape.

Personal Attributes:

• Self-starter, ability to work independently with minimal supervision and as part of a team.

• Good communication skills, and a willingness to train and mentor junior personnel.


• Able to work with both technical and business stakeholders to design solutions that bring optimal security benefits while accounting for business needs and timelines.


• Project management, cross-team coordination and driving organizational change.


• Strong verbal and written skills.


• Excellent interpersonal skills.

Requirements:

• 3+ years working as a Cloud engineer with a focus on security Infrastructure Security/DevSecOps, or other related disciplines.


• Knowledge of engaging Security within sustained operational environments.


• Security controls including but not limited to such as IAM, KMS, VPC, Security Groups, AWS Inspector, GuardDuty and SCPs.


• Hands-on experience with a diverse range of cloud security technologies, including identity and access management (IAM), web application firewalls, distributed denial of service (DDoS) mitigation, encryption technologies, security information and event management (SIEM), threat and vulnerability Extensive experience in working with GCP or AWS.


• Experience writing and maintaining Infrastructure as code (e.g., Terraform, CloudFormation, or similar).


• Familiarity with large Kubernetes deployments.


• Experience with securing and analyzing the security of Cloud environments and Linux based systems.


• Knowledge of DevOps processes and experience integrating security in the loop.


• Solid working knowledge of TCP/IP, routing, switching, and multicast.


• Working knowledge of one or more general purpose programming/script languages including but not limited to: C/C++, C#, Python, PowerShell, or Perl.


• Attracted to the dynamics of the financial markets.


• Understanding of Content Delivery Network (CDN) configuration, maintenance, and best practices (Cloudflare or similar).


• Cloud Security Architecture familiarity is desirable.


• Experience with enabling, tuning, and extracting additional value from log generation from AWS services.


• Hands-on experience with common Continuous Integration/Continuous Deployment platforms (GitHub, Jenkins, etc.).

Benefits:

• 100% Premium Coverage for Medical, Dental, & Vision for you and your dependents


• Flexible Spending Accounts, Health Savings Accounts, Tax-Free Transit benefits, & other supplemental benefits available


• Flexible time off


• Generous Parental Leave