AWS Vulnerability Management

Charlotte, NC, United States

Top Skills' Details AWS Vulnerability Management – AWS security

o 3 years of solid, recent AWS experience

o What are some native AWS services which can do vulnerability MGMT? Ex. Inspector,

o How would the work with golden images?

o EC2 images: how do you check how many vulnerabilities?

o Native AWS services

o How would you track IBOM (infrastructure bill of materials)

Currently seeking an experienced Sr. DevOps Engineer to support our mission of providing secure, reliable and innovative payment solutions to our healthcare clients. The Sr. DevOps Engineer works to deliver high-quality cloud solutions and helps drive a strong DevOps culture. As part of the Cloud Operations team, you will be responsible for the architecture, development, deployment, and operations of our cloud infrastructure. You will be expected to share the on-call duty with the rest of the Cloud Operations and engineering teams. Working closely with our Development teams you will be a champion of DevOps best practices including CI/CD, Infrastructure as code, containerization, microservice architecture, automated testing, and security.

Primary Responsibilities

• Collaborate with Developers to build a world-class infrastructure that can meet our customer’s security and uptime requirements

• Act as a key contributor to the development of our developer and CI/CD processes to improve our developer agility and code quality

• Manage mission-critical cloud-based production systems; proactively take action if/when systems are down or there are interruptions in service; root cause and implement corrective actions to build long-term customer loyalty

• Help create and evolve our operational processes

• Help to identify emerging technologies that can enhance our offering to our customers

• Be passionate about automation, quality, reliability, and scalability

REQUIRED SKILLS:

•-Knowledge of AWS and its associated technologies, both from Security and Cloud Ops perspective

•-Knowledge of Terraform

•-Experience taking vulnerabilities that are generated from 3rd Party scanning, do the analysis, determine remediation and implement remediation on lower environments. Validate fix, follow process to get that on to Production.

•-Perform Patch management tasks include: maintaining current knowledge of available patches, deciding what patches are appropriate for particular systems, ensuring that patches are installed properly, testing systems after installation, and documenting all associated procedures.

•-Maintain smooth operation of multi-user computer systems, including coordination with network, software, and system engineers, PC desktop technicians, project managers, end users, and customer and IT management.

•-Recommend and implement system enhancements that will improve the performance and reliability of the system including installing, upgrading/patching, monitoring, problem resolution, and configuration management.

•-Provide backup and recovery services; manage file systems and disk space; manage virus protection on a routine basis.

•-Create and maintain user and computer accounts and modify file permissions and security access lists.

•-Test new releases of products to ensure compatibility and minimize user impact.

•-Develop and document technical processes and procedures as needed. Provide technical assistance and support for incoming queries and issues related to computer systems, software, and hardware.

•-Administer servers, desktop computers, printers, routers, switches, firewalls, phones, smartphones, software deployment, security updates, and patches.

•-Assign configuration of authentication and authorization of Active Directory services.

• Minimum 3+ years in Cloud Technologies preferably AWS

• Minimum 3+ years of experience with deployment orchestration systems such as Kubernetes, ECS, and Elastic Beanstalk

• Minimum 2+ years of experience working with CI/CD tools such as CircleCI or Jenkins

• Minimum 2+ years of experience with Docker and Docker-Compose

• Minimum 4+ years with configuration management and automation tools (e.g., Puppet, Ansible, Chef, CloudFormation, SaltStack, Terraform)

• Strong Linux system administration experience

• Strong programming experience in at least one language (python, node, java, go, c/c++, ruby)

• Experience with logging and monitoring tools such as ELK, DataDog or NewRelic, LogEntries, SumoLogic, etc.

• Experience with Incident Management and crisis management

• Able to participate in 24/7 on-call rotation

• Strong written and verbal communication skills

DESIRED SKILLS:

• Payments industry experience.

• Experience managing an off-shore engineering team.

• Expertise in Agile methods, software development lifecycle management, continuous integration, and build and release management.

• HIPPA and PCI experience

• BS/MS degree in Computer Science or a related field, or equivalent work experience

Skills:

Devops, Aws, Jenkins, Kubernetes, terraform, ci/cd, Continuous integration, Automation, integration, security, jfrog, artifactory

Top Skills Details:

Devops,Aws,Jenkins,Kubernetes,terraform,ci/cd,Continuous integration,Automation,integration,security,jfrog,artifactory

Additional Skills & Qualifications:

Please have him focus on details like…how to provision network, storage etc

How to configure each of the above.

How to configure for scaling EC2, S3 etc

Experience Level:

Expert Level

About TEKsystems:

We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.

The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.