Overview

Provides security for cloud-based platforms and plays an integral role in protecting VNSNY data and cloud-based systems. Monitors and analyzes existing cloud structures, creates new and enhanced security methods, and manages relationships with third party managed services providers and consultants. Focuses on cloud-based management and security in order to achieve VNSNY’s security goals. Works under general supervision.

Responsibilities
Serves as the lead cloud technical resource within the Security team.Implements, monitors and supports security controls native to cloud-based platforms, including but not limited, to Microsoft 365 Cloud (Office 365 and Azure) and Amazon Web Services (AWS), and additional security solutions implemented to monitor those platforms.Oversees cloud security functions handled by Cloud Managed Service Provider.Manages projects and consultants to improve AWS, Office 365 and Azure security posture.Assesses and prioritizes cloud security projects based on information security risk.Supports new initiatives that utilize cloud services as the lead Security representative.Integrates and utilizes cloud monitoring tools and Security Operation Center solutions.Leads and monitors vulnerability management within cloud environments.Administers role-based identity and access management and encryption key management within cloud platforms.Defines, refines and automates security processes.Participates in incident response, change management, service requests, and problem resolution in the cloud platforms.Acts as technical resource to other IT staff in the design, implementation, and operationalization of security controls in or related to the cloud platforms.Integrates security into the Continuous Integration/Continuous Delivery (CI/CD) system development lifecycle (SDLC) for application development and deployment.Acts as a security resource for the infrastructure, database architecture, and business application management teams.Participates in special projects and performs other duties as assigned
Qualifications

Certifications:

Certified Cloud Security Professional (CCSP), AWS Certified Security Specialty, Microsoft Azure Security Engineer Certification, CISSP, HCISPP, CSSLP, CISM, CEH, CCSK, relevant GIAC certifications, preferred.

Education:

Bachelor’s Degree or equivalent work experience in a related field required.

Experience:

Minimum of five years of I.T. experience in a highly-regulated (finance, government, etc.) industry required.Minimum three years in cloud security required. Healthcare experience is a plus.Proficiency in AWS and Microsoft cloud platforms required.Knowledge of AWS components such as IAM, KMS, Config, Macie, CloudWatch, GuardDuty, Inspector, CloudFormation, CLI, and Python preferred.Knowledge of Microsoft 365 Security Center, Compliance Center, Exchange Admin Center, Azure Active Directory, Azure Information Protection and Rights Management, Cloud App Security, the various Advanced Threat Protection solutions, and PowerShell, preferred.Experience with code development tools and GitHub required.Experience maintaining Alert Logic products preferred.Excellent communication skills to communicate within IT and to the rest of the business required.Demonstrated ability to evaluate risk in a complex environment required.