Opis firmy:

Verita HR Polska is created by professionals with an innovative approach to recruitment and a passion for new technologies (entry number in register: 5694). We provide services in the field of human resource management projects - including recruitment services at all levels of management, employer branding and outsourcing. We are currently looking for a candidate in the following role:

AWS Cloud Security Architect

Obowiązki:

Seeking an AWS Cloud Security Architect to collaborate across all organizations to identify, deliver, and document the required artifacts to enable movement of applications and data to the cloud, including strategy, technical roadmaps, position statements, concepts, and logical specifications. The Cloud Security Architect will be hands-on, directly interacting with the engineering and application development teams and provide leadership to drive alignment on security requirements, influence decision makers, build relationships, and communicate strategy and architecture to the broader internal community. ;Provide a detailed understanding of cloud security and cloud infrastructure services, Threat landscape and attack scenario’s, Risks. ;Possess significant breadth across other disciplines (e.g., enterprise security architecture, compute services, storage, large-scale networking, virtualization, data center, integration architecture (API), orchestration technologies (Kubernetes, Docker, open stack), systems resiliency, service support, Secure application development lifecycle management (DevSecOps), and service delivery). ;Lead through influence, communicate effectively through clarity of thought and demonstrated understanding of business and technical requirements. ;Be a strong technologist with pragmatic view and creative mind, and a natural collaborator with line of business security architects, engineers, developers, application owners, service providers, and senior management.

Wymagania:

;BS in Computer Science, Software Engineering, Computer Engineering, or equivalent experience. ;Master's degree in Information Security or similar technical field. ;Industry certifications: GIAC, CISA and/or CISSP, CSSLP. ;Certified Kubernetes Administrator (CKA) or Microsoft Certified: Azure a plus. ;Experience with the assessment, implementation, management and documentation of a broad set of information security technologies and processes (e.g., app security, data protection, access management, network security) within a cloud environment. ;Experience working with Amazon Web Service cloud security management / governance tools, Cloud Access Security Brokers (CASB), cloud services and 3rd party hosted services, and server virtualization products and technologies. ;Knowledge of Cloud Platform technologies, including how to design, deploy, configure and secure applications and services on Cloud Platforms. ;Well versed in Cloud provider APIs, Python, Terraform, Docker, Kubernetes, Kubernetes security, container orchestration, network policies and access controls and security services. ;Knowledge of Container technologies, Kubernetes Orchestration and Managed Kubernetes Platforms (GKE, EKS and AKS), including how to design, deploy, configure and secure container images and containerized applications/microservices. ;Past experience with infrastructure tools such as Terraform, Packer, Ansible and Vault. ;Responsible for the development of custom code and API connectors for those container security solutions. ;Hands-on experience as an engineer or architect with public cloud technologies to include Amazon Web Services (AWS), Microsoft Azure and/or Google Cloud Platform. ;Understanding of common industry cyber security frameworks, standards and methodologies, including; OWASP, ISO2700x series, PCI DSS, GLBA, EU data security and privacy acts, FFIEC guidelines, CIS and NIST standards. ;Knowledge of key information risk management, controls and security related standards including OWASP, ISO2700x series, PCI DSS, GLBA, EU data security and privacy acts, FFIEC guidelines and NIST standards. ;Knowledge and technical understanding of common network protocols such as TCP, UDP, DNS, DHCP, IPSEC, HTTP, etc. and network protocol analysis suits. ;Knowledge and technical understanding of common cybersecurity technologies such as; Kubernetes, IDS / IPS / HIPS, Advanced Anti-malware prevention and analysis, Firewalls, Proxies, MSS, Cloud secrets management, encryption and key management, etc. ;Platforms and tooling, including; Windows, Linux, mainframe, iSeries, HP NonStop, infrastructure management and networking hardware. ;Knowledge and technical understanding of common operating systems and platforms to include; Windows, Linux, UNIX, Oracle, Citrix, GSX Server, iOS, OSX, etc. ;Knowledge of key Middleware technologies such as: ;Messaging technologies- IBM MQ, Rabbit MQ etc. ;Web technologies - WAS, Liberty, IHS, Tomcat, IIS etc. ;File transmission technologies - C:D, sFTP, SFG etc. ;Ability to automate highly complex solutions, and engineering the integration of security automation/enforcement in CI-CD Pipelines using DevOps methodology and tools such as: Ansible, Chef, Puppet, Terraform, Jenkins, GitHub, etc. ;Knowledge of Splunk and Splunk Enterprise Security. ;Well versed in Splunk administration, index and search head clustering concepts, log ingestion pipeline, data normalization techniques, building of Splunk TA's and Apps. Integration of various security tools with Splunk. ;Knowledge of key Collaboration and Workflow tools such as: ;Atlassian suite of tools I(JIRA, Confluence etc…) ;SharePoint ;Virtual Data Rooms (e.g. Intralinks) ;ServiceNow ;Strong scripting background Perl or Shell script. ;Service oriented mindset and familiar with ITIL concepts such as Incident, Change and Problem Management. ;Experience with one or more general purpose programming languages including but not limited to: Java, C/C++, Python, JavaScript and understanding of software vulnerabilities

Oferta:

Contact with top IT technologies available in the market. ;Employees’ benefits: Multisport Card, private medical and dental health care, life insurance, ;Free parking space for our employees – few minutes from the office, ;Internal training events and workshops, ;Realistic career progression opportunities in an international organization, ;Commutable office location – Kapelanka street, ;Casual dress code, ;Cultural exchange.