This position is based on site in Maryland, and relocation assistance is available.
Principal and Essential Duties & Responsibilities
- Design, implement, and maintain secure cloud infrastructure.
- Monitor cloud environments for security breaches and respond to incidents in a timely manner.
- Develop and enforce security policies, procedures, and technical standards in cloud deployments.
- Perform threat modeling, vulnerability assessments, and risk analysis of cloud environments.
- Automate security testing (SAST, DAST, SCA) for code, containers, and infrastructure.
- Integrate security controls, vulnerability scanning, and compliance checks into CI/CD pipelines (e.g., Azure DevOps, GitHub Actions).
- Evaluate and deploy cloud-native security tools.
- Automate security operations using Infrastructure-as-Code (IaC) tools like Terraform, CloudFormation, or ARM templates.
- Ensure compliance with relevant standards and frameworks such as ISO 27001, SOC 2, NIST, HIPAA, or GDPR.
- Participate in incident response planning, testing, and post-incident reviews.
- Stay up to date on the latest cloud security trends, threats, and technologies.
- Bachelor’s degree in Computer Science, Information Security, or a related field or equivalent experience.
- 10+ years of experience in information security, with at least 3 years focused on cloud security and/or SecOps environments.
- Hands-on experience with cloud platforms such as AWS, Azure, or GCP.
- Strong understanding of cloud networking, identity and access management (IAM), encryption, and security monitoring.
- Experience with security automation and Infrastructure-as-Code.
- Familiarity with container security (e.g., Docker, Kubernetes).
- Proficiency in scripting languages (Python, Bash, etc.) is a plus.
- Relevant certifications (e.g., AWS Certified Security Specialty, Azure Security Engineer Associate, CISSP, CCSP) are highly desirable.
