Cloud Security Engineer at Independent Health Association in Williamsville, New York

Job Description:

Overview

The Cloud Security Engineer (CSE) specializes in providing security for Independent Health cloud-based digital platforms and plays an integral role in protecting organizational data. This includes analyzing existing cloud structures and creating new and enhanced security methods. The CSE serves as part of a larger team dedicated to cloud-based management and security. The individual in this role will participate in architecture reviews of Infrastructure as a service (IaaS), Platform-as-a-service (PaaS), and Software-as-a-service (SaaS). Provide input on and monitor for proper securing of services used in cloud deployments. Comprehend key security concepts, including usage of Key Management Service (KMS) keys, Cloud Access Security Broker (CASB), Data Loss Prevention (DLP), Identity and Access Management (IAM) policies, IAM roles, Secured Network Architectures, and CIS foundation best practices.

Additionally, this individual will play a key role in the overall information risk program by assisting with and supporting other information risk office team objectives, such as: execution of components of the enterprise-wide information security awareness program, maintenance of overall security policies, and monitoring of compliance with these policies; creating and maintaining an inventory of system functions and purposes, development of information risk reporting and metrics, fielding various team inquiries, presenting on varied information risk goals and objectives to other teams and departments within the company.
Qualifications
- Bachelor's degree required; an additional four (4) years of experience in designing and developing software may be considered in lieu of degree.
- Four (4) years of experience in the cybersecurity, IT, or engineering fields; with at least two (2) years in a security engineer role.
- Industry recognized certifications within the domain of information security, information technology and privacy (e.g., CISSP, GIAC, CISM, ITIL, CIPP/US, etc.) considered a plus and recognized as an indication of knowledge.
- Strong understanding of security controls/services in public cloud environments. Amazon Web Services (AWS) and Microsoft Azure and Office365 experience preferred.
- Experience in threat detection, monitoring, log management, incident response, and forensics.
- Experience in identity and access management (IAM), secrets management, encryption technologies, OS security hardening, SaaS services hardening, and container orchestration tools (Kubernetes or Docker, etc.) security.
- Experience with cloud automation using industry standard tools (Cloud Formation, Terraform, Ansible, Chef, or Puppet, etc.).
- Experience working with complex IT systems, including operating systems, networks, firewalls, and load balancers.
- Knowledge of Cloud security fundamentals or Cyber threats as they relate to cloud.
- Excellent planning and problem-solving skills; must have high attention to detail and quality of work deliverables; must show strong customer service orientation.
- Excellent oral and written communication skills, as well as the ability to convey privacy, technical and security related issues to business audience.
- Experience making independent risk-based decisions for planning and incident management, with consideration for business and operational goals and constraints.
- Proven leadership and success in developing, deploying, and maintaining enterprise-level initiatives.
- Knowledge of information security fundamentals, information security policies and procedures, industry best practices as well as various governance standards and healthcare law (HITRUST, NIST, ITIL, HIPAA, HITECH, etc.)
- Experience with Microsoft PowerPoint, Excel, and Visio.
- Proven examples of displaying Independent Health values: Passion, Caring, Trustworthy, Collaborative, Respectful and Accountable.
Key Accountabilities

Design, implement and manage security controls in a public cloud platform (such as Amazon Web Services, Microsoft Azure or Google Cloud Platform) and across IaaS, SaaS, PaaS, and/or Kubernetes/container environments, including, but not limited to:
- Evaluate, implement, monitor, and support security-focused tools and services for our AWS, Azure and Office365 environment.
- Design, integrate, and test a suite of tools for security management of multi-tenant private and public cloud application services.
- Recommend configuration changes to improve the performance, usability, and value of cyber analysis tools.
- Develop prototype resource definitions in cloud environments using infrastructure as code processes and tools.
- Review and analyze audit records for identified unusual activity and provide evidence of review and/or findings.
- Design and manage security monitoring and threat detection systems for cloud environments.
- Perform security assessments and provide recommendations and consulting on securing cloud infrastructure and in selecting and implementing cloud security tools.

Provide operational support for security operations related activities that can include, but not limited to:
- Using, configuring, and managing AWS, Azure and Office365 Security Center.
- Security monitoring including log aggregation/centralization, correlation, and alerting of security events and incidents.
- Configure rules for real-time alerting in SIEM tool for events.
- Advise and consult with service teams on risk assessment, threat modeling, and vulnerability remediation.
- Integrate knowledge of Cloud Security fundamentals, including cryptography and the shared responsibility model into our services.
- Leverage strong teamwork and collaboration skills as you and your teammates engage with other engineering and operations teams spanning the entire technology stack - endpoints, networks, databases, and applications - to engineer and deploy cutting-edge defensive solutions to modern threats.
- Evangelize security within Amazon and be an advocate for customer trust.
- Evaluate and continuously improve controls and processes to increase security, eliminate vulnerabilities, improve system performance, reduce waste and lower cost.

Manage and administer enterprise data loss prevention and CASB technology and related efforts designed to monitor the movement and prevent inappropriate end-user exfiltration of member and business confidential data while allowing appropriate use, disclosure and secure transmission of data based on its sensitivity.
- Keep abreast of and provide recommendations on emerging security technologies/tools.
- Support compliance/certification activities and participate in security audits/reviews.
- Support vulnerability scanning and penetration testing activities for cloud workloads. Serve as a security expert and provide guidance and technical leadership to other staff members.
- Participate in tabletop and functional contingency plan incident response testing annually
- Identify risks, troubleshoot, resolve, or escalate to management as necessary.
- Identifying and implementing efficiencies in the enterprise security monitoring program while meeting goals defined by the Chief Information Security Officer, and ensuring adherence to company policy and standards.
- Providing enterprise leadership within the information risk office team and as a result of the overall monitoring of the enterprise security systems and technology.
- Develop, foster, and mature process efficiencies with the goal of reducing time and effort to perform
- Participant in the execution of enterprise-wide information security program.
- Maintain security policies including updates to reflect changing practices and business needs.

As an Equal Opportunity / Affirmative Action Employer, Independent Health and its affiliates will not discriminate in its employment practices due to an applicant's race, color, creed, religion, sex (including pregnancy, childbirth or related