Software Engineer

Job Description

Must have a minimum of 10 years of related experience managing cloud environments, possessing extensive skills and knowledge in cloud service provider selection, implementation techniques, application data migration techniques and tools for the most efficient solution to meet business needs, including present and future capacity requirements. Possess at least 1 Professional or Specialty certification from a cloud provider.

Required Qualifications, Skills, Experience or Certifications:

1. 12+ years experience in information technology WITH 8+ years of focused, HANDS ON experience deploying/configuring workloads within EITHER AWS or Azure – preferred experience is NETWORK focused

2. Demonstrated understanding of NIST 800-53 security principals and their application to cloud compute, network, and storage

3. Experience integrating Palo Alto NextGen Firewalls into AWS or Azure

4. Experience integrating and configuring Palo Alto Prisma Cloud for compliance reporting

5. Demonstrated understanding of scripting deployment of governance policies and security controls to either AWS or Azure at an enterprise level

a. AWS Specific – Demonstrated experience with Control Tower, SCPs, deployment of stacks/stack sets, and cross account roles

b. Azure Specific – Demonstrated experience configuring service principals for least privilege

6. Professional Architect Certification within EITHER AWS or Azure

Job Role Specific Requirements:

1. Integrating tools and technologies to the cloud environment to support enabling TIC 3.0 Internet accessible workloads

2. Developing scripts to deploy policies and tags for cloud environment management (using tools such as AWS CloudFormation, PowerShell, Python and Ansible, including use of remote APIs

3. Configuring Web Application Firewalls

4. Configuring CSP applicable DDOS tools

5. Configuring Gateway load balancer endpoints and private links within cloud environments for network security

6. Troubleshooting network configurations for Palo Alto Next Gen Firewalls

7. Configuring and troubleshooting compliance reports within Palo Alto Prisma Cloud

8. Configuring compliance tools to support microsegmentation

9. Configuring security tools to support Data Loss and Prevention (DLP) using tools such as Prisma Cloud or Microsoft Purview

10. Demonstrated understanding of access control and security principals within CSP (Azure or AWS)

Preferred skills and qualifications:

1. Understanding of micro-segmentation and its application to cloud based workloads

2. Understanding of DNS services and domain resolution

3. Understanding of implementing tools to support Data Loss and Prevention (DLP) within cloud based workloads

Note: Candidate must be a U.S. citizen or green card holder who has resided in the U.S. for at least 3 years and the ability to obtain a public trust