Posted in

Cybersecurity Engineer – Multi-Cloud Expertise – Communities – Energy & Infrastructure

Cybersecurity Engineer – Multi-Cloud Expertise – Communities – Energy & Infrastructure

CompanyGuidehouse
LocationSalt Lake City, UT, USA, Nashville, TN, USA, Washington, DC, USA, Los Angeles, CA, USA, Lewisville, TX, USA, Albuquerque, NM, USA, McLean, VA, USA, Chicago, IL, USA, Boise, ID, USA, Sacramento, CA, USA, Kansas City, MO, USA, Albany, NY, USA, New York, NY, USA, Charleston, SC, USA
Salary$113000 – $188000
TypeFull-Time
DegreesBachelor’s, Master’s
Experience LevelMid Level, Senior

Requirements

  • An ACTIVE and MAINTAINED TOP SECRET DoD security clearance
  • Senior Consultant – Bachelor’s degree from an accredited university or college in Computer Science, Information Security, Cybersecurity or a related field AND THREE (3+) plus years of post-graduation work experience in cybersecurity, with a focus on cloud security; Or Master’s degree in an accredited university or college in Computer Science, Information Security, Cybersecurity or a related field AND ONE (1+) plus years of post-graduation work experience in cybersecurity, with a focus on cloud security.
  • Managing Consultant – Bachelor’s degree from an accredited university or college in Computer Science, Information Security, Cybersecurity or a related field AND Five (5+) plus years of post-graduation work experience in cybersecurity, with a focus on cloud security; Or Master’s degree from an accredited university or college in Computer Science, Information Security, Cybersecurity or a related field AND Three (3+) plus years of post-graduation work experience in cybersecurity, with a focus on cloud security.
  • Any of the following relevant certifications such as AWS Certified Security – Specialty, Microsoft Certified: Azure Security Engineer Associate, Google Professional Cloud Security Engineer, CISSP, or similar.
  • Strong knowledge of cloud security frameworks, standards, and best practices (e.g., CSA, NIST).
  • Proficiency with cloud security tools and technologies (e.g., AWS Security Hub, Azure Security Center, Google Cloud Security Command Center).
  • Excellent problem-solving skills and the ability to think like an attacker.
  • Strong communication and presentation skills, with the ability to convey complex technical concepts to non-technical stakeholders.
  • Ability to work independently and as part of a team in a fast-paced environment.
  • Ability to travel as required
  • Currently reside in the contiguous United States
  • This is a Hybrid role that requires the ability to work onsite in a core Guidehouse Office or Client Office location.

Responsibilities

  • Design and implement robust security architectures for cloud environments (AWS, Azure, Google Cloud).
  • Develop and enforce security policies, standards, and best practices for cloud deployments.
  • Ensure compliance with industry standards and regulatory requirements.
  • Monitor and respond to security incidents and alerts in cloud environments.
  • Conduct regular security assessments and audits to identify vulnerabilities and risks.
  • Implement and manage security tools and technologies to enhance cloud security.
  • Design and manage IAM policies and roles to ensure secure access to cloud resources.
  • Implement multi-factor authentication (MFA) and other access controls to protect sensitive data.
  • Conduct regular reviews of IAM policies and access permissions.
  • Implement encryption and data protection mechanisms to safeguard data in transit and at rest.
  • Develop and maintain data loss prevention (DLP) strategies for cloud environments.
  • Ensure secure backup and recovery processes for critical data.
  • Integrate security into the DevOps pipeline to ensure secure development and deployment practices.
  • Develop and implement automation scripts and tools to enhance security operations.
  • Collaborate with development and operations teams to promote a culture of security.
  • Gather and analyze threat intelligence to stay informed about the latest threats and attack techniques.
  • Develop and maintain incident response plans and playbooks for cloud environments.
  • Conduct post-incident reviews to identify lessons learned and implement improvements.

Preferred Qualifications

  • An ACTIVE and MAINTAINED Department of Energy (DOE) Q-SENSITIVE security clearance
  • Preference will be given to candidates within 60 miles of a core Guidehouse office or Client Office location.
  • Experience with container security (e.g., Docker, Kubernetes).
  • Knowledge of scripting languages (e.g., Python, PowerShell) for automation and tool development.
  • Familiarity with DevSecOps practices and tools (e.g., Jenkins, Ansible).