Lead Cloud Security Engineer

What We Provide

• Referral bonus opportunities
• Generous paid time off (PTO), starting at 30 days of paid time off and 9 company holidays
• Health insurance plan for you and your loved ones, Medical, Dental, Vision, Life and Disability
• Employer-matched retirement saving funds
• Personal and financial wellness programs
• Pre-tax flexible spending accounts (FSAs) for healthcare and dependent care
• Generous tuition reimbursement for qualifying degrees
• Opportunities for professional growth and career advancement
• Internal mobility, generous tuition reimbursement, CEU credits, and advancement opportunities
• Interdisciplinary network of colleagues through the VNS Health Social Services Community of Professionals.

What You Will Do

• Serves as the lead cloud security technical resource within the Security team and for the infrastructure, database architecture, and business application management teams.
• Leads the design improvement and implementation of security controls within cloud-based and infrastructure-as-a-service and platform-as-a-service offerings, including security features native to the services and additional solutions implemented to compliment and monitor current service offerings.
• Oversees cloud security functions handled by Cloud Managed Service Provider.
• Assesses and prioritizes cloud security projects based on information security risk.
• Participates in the identification, implementation and on-going support of new DevOps initiatives built on cloud services.
• Integrates and utilizes cloud monitoring tools and Security Operation Center/Managed Security Service Provider solutions.
• Oversees and monitors managed services providers regarding vulnerability management, identity and access management, and encryption key management within cloud environments.
• Works with other teams to implement DevSecOps processes to achieve security objectives such as process monitoring, risk analysis, incident management, vulnerability management and automation of security processes.
• Trains IT team members on security principles, processes, strategy, and tactics to achieve security objectives within cloud environments.
• Manages security projects and contributes security input to mission-critical and growth-minded initiatives for the larger business.
• Develops security solutions and communicates with internal and external parties.
• Participates in incident response, change management, service requests, and problem resolution.
• Supports other security efforts directly and indirectly related to cloud platforms and the business use of those platforms.
• Designs, develops, documents and champions the Enterprise Cloud Security Architecture to complement the Cloud Enterprise Architecture for existing and new systems.
• Integrates security into the Continuous Integration/Continuous Delivery (CI/CD) system development lifecycle (SDLC) for application development and deployment.
• Participates in special projects and performs other duties as assigned.

Licenses and Certifications:

• Certified Cloud Security Professional (CCSP), AWS Certified Security Specialty, AWS Certified Architect, Microsoft Azure Security Engineer Certifications, CISSP, HCISPP, CSSLP, CISM, CEH, CCSK, or relevant GIAC certifications

Education:

• Bachelor's Degree or equivalent work experience required

Work Experience:

• Minimum of seven years of experience in cloud security in a highly regulated industry required
• Healthcare experience preferred
• Proficiency in AWS and Microsoft cloud platforms required
• Proficiency with AWS components such as Organizations, IAM, Identity Center, KMS, Security Hub, Config, Macie, CloudWatch, EventBridge, GuardDuty, Inspector, CloudFormation, WAF & Shield, and CLI required
• Proficiency with Microsoft 365 Security Center, Azure Active Directory, Cloud App Security, Microsoft Defender, and PowerShell required
• Experience with development and automation tools such as Visual Studio Code, Python, Ansible, and Git- based repositories such as GitHub or GitLab required
• Experience with Infrastructure as Code (IaC) tools such as Terraform for provisioning and managing cloud resources preferred
• Excellent communication skills to communicate within IT and to the rest of the business required
• Demonstrated ability to evaluate IT security risk in a complex environment required