Principal Cloud Security Engineer

YOUR IMPACT
These duties are not meant to be all-inclusive and other duties may be assigned. The primary responsibilities for this role will be to serve as the Cloud Security subject matter expert and contribute to designing, implementing, and maintaining security controls for our cloud solutions.

• Design, implement and maintain, monitoring and alerting solutions to detect and respond to unauthorized access and potential threats in our cloud tenants.
• Work closely with architects and analysts to ensure necessary security solutions are in place throughout all systems to mitigate identified risks sufficiently, while meeting business objectives and regulatory requirements.
• Serve as a trusted advisor to business functional areas (e.g., Finance, HR, Engineering) and/or internal IT resources (such as infrastructure, apps, IT services.).
• Ensure that business and technical requirements are aligned to policy and are implemented within regulatory and contractual compliance.
• Advocate for cyber risk mitigation during planning sessions and implementation of new technology services.
• Maintain awareness of all aspects of information security and compliance, including PCI, SOC, and HIPAA requirements for information systems and industry best practices, such as, NIST 800-53, 800-171.
• Contribute to the development and maintenance of the cybersecurity strategy.
• Contribute to the development and maintenance of cybersecurity hosted system roadmaps (e.g., SIEM, DLP, NDR) and drive continuous improvements.
• Participate in development and continuous improvement of the following cybersecurity programs: Threat & Vulnerability Management, Insider Threat Management, Data Governance, Cloud Security, Supplier Risk Management, Security Policies, and Cybersecurity Governance & Compliance.
• Contribute and help update the cybersecurity risk model, and coordination with other functional teams (e.g., HR, Finance, IT, Engineering) to establish plans to securely manage the cyber risks associated with business activities and technical implementations.
• Work with CSIRT to improve process, procedures, and training such as creating playbooks for investigations with other analysts to train on proper techniques for investigation.
• Be involved in threat hunts and purple team events that are put on to strengthen our knowledge of our environment.

• Graduate degree in Cybersecurity, Information Systems, Management or equivalent.
• Relevant industry recognized certifications (CISSP, CEH, GIAC, Security+, SSAP etc.).
• Demonstrated conceptual, analytical, and innovative problem-solving and evaluative skills.
• Demonstrated knowledge of security controls for network, applications, and operating systems.
• Experience communicating conceptual and technical information both verbally (on phone, one-on-one, to groups) and in writing (emails, letters, reports, presentations) to various audiences (work group, team, company management, external clients).
• Experience with projects or issues of high complexity that require in-depth knowledge across multiple technical areas and lines of business.
• Experience identifying intruder techniques (new vulnerability, attack vectors, exploits, etc.).
• In-depth Knowledge and experience with InfoSec systems (SEIM, SOAR, IDS/IPS, Honeypots, Open Source Client, Sandbox Analysis Tools, etc.).
• Hold an active or can obtain a U.S. Government Secret level or above clearance.
• Direct Experience with SEIM or SOAR platforms.

Nesco Resource provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws.