Job Description Job Summary: The Cloud Security Engineer Lead Consultant designs and builds Cloud security solutions that will balance the need for speed and flexibility of cloud infrastructure and IaaS/PaaS/SaaS applications, with the need to protect National General against ongoing and potential security threats. This role requires the ability to synthesize radical ideas and the aptitude to define new security strategies in a global environment. Key Responsibilities: Drive cloud security engineering conversations for our enterprise IT and business IT teams in IaaS/PaaS/SaaS implementations. Actively assess existing Cloud implementations, identifying security issues and prioritizing fixes. Participate as an active member of Design & Build IT projects, steering Cloud configurations and services towards industry-leading security practices within domain expertise. Engineer and implement new Cloud security tools to feed our DevOps/SecOps processes to ensure the solvency of Cloud computing resources. Thoroughly understand DevOps ideologies with the ability to drive and communicate change supporting DevOps/SecOps methodology within the organization. Provide daily, ongoing security oversight of SecOps operations, to include the security impact of proposed modifications, additions, and technology implementation/refresh operations. Understand system security vulnerabilities and associated threats, and assess the overall security risks to the system. Evaluate and respond to alerts and events from the security tools, including tuning of tool configuration to minimize false positives. Develop event response documentation and processes for Security Operations Center to follow and appropriate escalation protocol. Serve as a supporting interface to governance, compliance, and risk management teams to ensure the system consistently meets the requirements for certification and accreditation. Work with the Cloud Operations teams in the definition and implementation of security standards and best practices. Work with Senior Technical resources for mitigation recommendations to reduce identified security risks. Perform system vulnerability scanning using approved software tools and support automation efforts. Thoroughly understand software installations, systems monitoring and troubleshooting, account management, and overall efforts to minimize system downtime. Supervisory Responsibilities: This job does not have supervisory duties. Preferred Qualifications: Education and Experience 4-year Bachelors Degree (Preferred) 5 or more years of experience (Preferred) In lieu of the above education requirements, an equivalent combination of education and experience may be considered. Functional Skills In-depth knowledge and hands-on experience in designing, implementing, and maintaining security controls in cloud environments, with a strong emphasis on Azure and AWS. Ability to collaborate with project teams to develop and implement security plans for migrating applications and systems to cloud environments Understanding of Security Operations Center (SOC) principles and practices in the context of cloud security Proficiency in scripting languages such as Python, and PowerShell, and the ability to use them for security automation, orchestration, and management tasks. Experience with Linux/UNIX Windows servers, MS SQL, Oracle MySQL, MongoDB Experience understanding protocols, such as, SSL/TLS, CIFS, DHCP, SMTP, LDAP/S, NFS, SNMP, and DNS Experience in networking concepts and services, such as VPNs, IPsec, PKI, and TCP/IP; familiar with high-availability (HA) and failover implementations for network infrastructure and server systems Proficiency in using vulnerability scanning tools to develop comprehensive vulnerability management programs within cloud environments Practical experience in implementing IAM solutions for cloud environments Experience in establishing monitoring solutions for tracking security events during and after the cloud migration to support operational process Ability to develop and execute incident response plans specific to Azure and AWS migration-related security incidents, addressing vulnerabilities promptly. Proactive commitment to staying informed about the latest trends, threats, and advancements in cloud security, vulnerability management, SOC practices, and related technologies Organized, responsive, and highly thorough problem solver; strong communication skills National General prides itself on offering our employees a robust Total Rewards package which includes base salary. The base range offered for the role is: $84,500 – $118,000 and may vary based on internal equity, and job-related skills, knowledge and experience; among other factors. Other financial components may be added as part of the competitive compensation package, in addition to a full range of benefits, dependent on the level and position offered. National General Holdings Corp. is an Equal Opportunity (EO) employer – Veterans/Disabled and other protected categories. All qualified applicants will receive consideration for employment regardless of any characteristic protected by law. Candidates must possess authorization to work in the United States, as it is not our practice to sponsor individuals for work visas. In the event you need assistance or accommodation in completing your online application, please contact NGIC main office by phone at (336) 435-2000 .
Amazon Web Services (AWS) nfs Azure Linux cloud-security TCP/IP DNS pki ldap Windows SecOps Internet Protocol Security (IPsec) smtp MySQL soc snmp DHCP Unix Python powershell MongoDB cifs VPN Oracle Microsoft SQL Server ssl DevOps amazon-iam