Description:
The Cloud and Security Engineer has overall responsibility for responsible for architecting, implementing, and maintaining secure, scalable, and resilient infrastructure across public, private, and hybrid cloud environments. This role leverages deep expertise in hybrid cloud architecture and compliance frameworks such as CMMC to ensure the confidentiality, integrity, and availability of enterprise systems. By aligning security best practices with business objectives, the position drives innovation while safeguarding critical assets against evolving threats.
Reporting to the IT Manager, this position is key to preventing data breaches and ensuring data confidentiality, integrity, and availability. According to the FLSA (Fair Labor Standards Act), this position is classified as exempt.
Major Areas of Accountability:
- Evaluate the feasibility of complex enterprise architecture concepts and determine practical approaches to implement and meet the business needs. Translate the conceptual architecture into common services and plans.
- Analyze the current application/technology/data environments to detect critical deficiencies and recommend solutions for improvement.
- Oversee and design of enterprise major mission-critical applications/infrastructure/data models.
- Ensure solutions meet requirements for integrity, scalability, availability, reusability, audit and disaster recovery.
- Design and implement robust cloud network architectures, incorporating firewalls, network security groups, and role-based access control (RBAC) policies to safeguard cloud services and containerized applications.
- Deploy and maintain advanced security controls, such as Intrusion Detection/Prevention Systems (IDS/IPS), Web Application Firewalls (WAF), and Data Loss Prevention (DLP) tools.
- Implement Zero Trust network architecture and micro-segmentation to limit the exposure of the environment of potential breaches.
- Use tools like Terraform or Bicep in a DevOps environment to automate the provisioning of secure cloud network infrastructure.
- Participate in incident response design, development and testing as well as tabletop exercises.
Education and Experience:
- Bachelor’s degree in computer science or related field, with 5+ years of experience
- Certifications: Azure Security Engineer (AZ-104, AZ-305, AZ-505) desired
- Knowledge in FedRAMP and CMMC certification or CMMC professional (CCP) desired
- Experience with developing solution architectures within an agile development environment would be considered an asset
- Experience deploying multi-cloud architecture would be considered an asset
- Proficiency in English is a critical requirement for this role. Core responsibilities include providing service and communication to customers, teams, and stakeholders. The position involves drafting complex documents and preparing reports for leadership. These essential duties cannot be reassigned to other team members.
- Experience with developing solution architectures within an agile development environment would be considered an asset
- Maintains confidentiality and security of intellectual property (CUI-ITAR, Prototype).
Pay and Benefits
CCI is committed to offering competitive pay and benefits, including, but not limited to:
- Flexible work hours
- Paid Time Off (PTO) and Paid Holidays
- Medical, Dental, and Vision Insurance Plans
- HSA and FSA
- Life Insurance
- 401(k) with match
- Tuition Reimbursement
- Pet Insurance
- Identity Theft Insurance