Cloud Security Engineer

San Antonio, TX, United States

Interview Times: Starting 11/28/2023

Interview Process: 2 rounds - initial phone screen then panel IV via Teams/Zoom

Key Requirements:

Strong Core Values: Seeking a team player with a strong work ethic, good personal skills, and a sense of humor - this was huge for them

Soft skills: excellent communication and able to work in a fast-paced environment

Security Expertise: Specifically, experience with securing cloud migrations , Azure environment security , and reporting/alerting to the CSOC (Cybersecurity Operations Center). We NEED someone with the cloud migration experience and a focus on security

Must Haves Experience with NSG (Network Security Groups) and ASG (Application Security Groups) configurations.

Proficiency in infrastructure as code tools like Bicep .

Knowledge of Azure cloud alerting systems and tuning them for CSOC .

Expertise in KQL (Kusto Query Language) for querying Azure data. (SQL might be in lieu of)

Familiarity with Azure Policy Tool for governance purposes

Hands-On Engineering Experience: Preferably someone with direct involvement in large-scale cloud migration projects

Position Summary

The successful candidate will perform tasks within our Operational Technology and Business facing IT environments to maintain, and improve, infrastructure Cybersecurity postures. The role will work closely with business partners to ensure operational reliability and minimize disruption of services while maintaining a focus on customer support and continuous improvement. Additionally, the candidate should be experienced with the latest cloud security concepts, Agile methodologies, and can quickly assimilate information about MPC's supported environments. While a strong competency in cloud security is a must, a willingness to acquire the skills to be cross functional within the team is the goal.

Key Responsibilities:

Education and Experience Participates on an Agile team responsible for completing assigned backlog tasks in support of designated value stream efforts.

Creates new and maintain system, configuration, and environment documentation.

Maintains a high level of technical knowledge on current infrastructure security tools with the ability to act as a subject matter expert in at least one tool.

Designs and implements comprehensive security solutions for Azure cloud environments, including infrastructure, networks, applications, and data.

Completes compliance tasks on a regular basis in accordance with all internal and external policies and procedures.

Configures and manages Azure security services and tools such as Azure Security Center, Azure Sentinel, Azure Active Directory, and others.

Stays up-to-date with industry trends, emerging threats, and best practices related to Azure and cloud security. Implement necessary adjustments to security strategies based on evolving threats.

Partners with OT and IT Architects to engineer, test, modify and implement security solutions.

Gathers requirements and apply product upgrades and patches as appropriate.

Coordinates with business partners to minimize service interruptions.

Completes root cause analysis for unplanned outages and implement appropriate solutions.

Identifies value-add enhancements and solutions.

Addresses all issues/troubleshooting in a timely fashion.

Ability to work, participate and contribute in a diverse team environment including team members and business partners.

Clearly communicates thoughts, ideas, specification and requirements with business clients and technical developers.

Effectively communicates outages and problems with business partners and management.

Minimizes audit concerns and issues.

Delivers results on time and on budget in accordance with requirements.

Adheres to and maintains compliance with all applicable standards and policies.

Shares responsibility for after hour support of incidents.

Writes and updates procedures for administering and maintaining the health of the environment.

Bachelor's Degree in Computer Science, Information Systems, related field, or equivalent experience.

Familiar with NIST Cybersecurity Framework and NIST SP 800-82/ISA62443 control sets

Microsoft Visio and documenting infrastructures

5+ years of experience in a cybersecurity role securing enterprise cloud environments a plus.

Microsoft Azure Security Engineer certification

Additional Job Description

Additional Job Description

MINIMUM QUALIFICATIONS: Bachelor's degree in a technical ?eld (Cybersecurity, Computer Science, Information Systems, Information Technology (IT), Information Systems Security, Electrical Engineering, Physical Sciences), or the equivalent per below:

An associate degree in a technical field, or related plus an additional 2 years of professional work experience in a technical ?eld; OR

4 years of professional work experience in a technical field

In addition to education, the following experience is required:

Professional Level 3 (P3) 5 or more years of experience in a technical, professional role for an enterprise, with a minimum of 4 years' experience in cybersecurity

Professional certification, such as Security+, SANS GSEC, CISSP, CISA, or CRISC

Professional Level 4 (P4) 7 or more years of experience in a technical, professional role for an enterprise, with a minimum of 6 years' experience in cybersecurity

Professional certification, such as Security+, SANS GSEC, CISSP, CISA, or CRISC

#J-18808-Ljbffr