*We are unable to sponsor for this permanent Full time role*

*Position is bonus eligible*

Prestigious Financial Institution is currently seeking a Security Assurance Testing Engineer. for Blue Team activities. Candidate will be responsible for security testing and helping to manage the configuration baseline process. This position is a junior to midrange engineering position that requires the ability to complete technical testing and provide informational updates to leadership and executive staff.

Responsibilities:.

Perform a variety of assessments under the guidance of senior team members which could include cloud assessments, light penetration testing, and network and operating system assessments

Perform guided reviews of security, network, applications, and cloud environments

Produce reports and artifacts for various levels of leadership and staff relating to security related activities

Ensure alignment of security controls as part of Blue Team testing program and supporting services and related policies and procedures with applicable regulations and industry standard best practices

Assist management with the improvement of policy and procedure to support Security Testing and Blue Team activities as well as other security duties which may arise

Participate in developing security roadmap, adopt security best practices, and implement new ideas and innovations according to the industry trends

Continue to support, grow, and assist the development of current processes and tools

Qualifications:.

Requires working knowledge of security controls and standards for a variety of technologies including networking, operating systems, Cloud Security, DevOps, and Security Testing.

Ability to participate in multiple concurrent testing assignments while maintaining high quality of work

Ability to think critically about the relative risk of security observations within the context of the overall environment and controls

Experience supporting server operating systems, networking, and enterprise applications

Experience with AWS Services including automation services (Lambda, JSON, etc)

Experience with DevOps Pipelines and GitHub Repos

Architectural understanding and expertise of cloud and hybrid cloud infrastructure

Three years of experience with Security Engineering activities and testing.

One to two years of experience with DevOps processes

One to two years of experience with AWS architecture and services.

Prior experience as a systems or network engineer desired

Prior experience with vulnerability management and security remediation desired

Detailed experience with operating system control framework such as CIS Benchmark or STIG desired

Certifications preferred:

• AWS Certified Solutions Architect
• AWS Certified Security Specialty
• Certification Information Systems Security Professional (CISSP)
• Certified Cloud Security Professional (CCSP)
• GIAC Cloud Security Essentials (GCLD)
• GIAC Cloud Security Automation (GCSA)
• GIAC Security Essentials (GSEC)
• GIAC Defensible Security Architecture (GDSA)