Job Description
***Fully Remote***
A prestigious company is looking for an Associate Principal, Blue Teamer. This position will focus on security testing, cloud assessments, web app pen testing, network/operating system testing. The Associate Principal will focus on AWS architecture testing and DevOps processes.
Responsibilities:
· Perform cloud assessments, web application penetration testing, mobile application testing, network and operating system assessments
· Perform independent reviews of company security, network, applications, and cloud environments
· Produce reports and artifacts for various levels of leadership and staff relating to security related activities
· Ensure alignment of security controls as part of the company Blue Team testing program and supporting services and related policies and procedures with applicable regulations and industry standard best practices
· Assist management with the improvement of policy and procedure to support Security Testing and Blue Team activities as well as other security duties which may arise
· Participate in developing security roadmap, adopt security best practices, and implement new ideas and innovations according to the industry trends
· Continue to support, grow, and assist development current processes and tools
Qualifications:
· Requires an in-depth knowledge of security controls and standards in relation to Cloud Security, Architecture, DevOps, and Security Testing.
· Ability to functionally serve as a primary point of contact across multiple teams within the organization and to lead projects for the entirety of the lifecycle.
· Experience with AWS Services including automation services (Lambda, JSON, etc…)
· Experience with DevOps Pipelines and GitHub Repos
· Architectural understanding and expertise of cloud and hybrid cloud infrastructure
· Seven years’ Experience with Security Engineering activities and testing.
· Three years of experience with DevOps processes
· Three years’ experience with AWS architecture and services.
Certificates or Licenses:
· Certification in at least one or more of the following:
· AWS Certified Solutions Architect
· AWS Certified Security Specialty
· Certification Information Systems Security Professional (CISSP)
· Certified Cloud Security Professional (CCSP)
· GIAC Cloud Security Essentials (GCLD)
· GIAC Cloud Security Automation (GCSA)
· GIAC Security Essentials (GSEC)
· GIAC Defensible Security Architecture (GDSA)