The Cloud Security Engineer will play a key role in working with engineering in developing, implementing, and monitoring the Kno2 cloud environment.  The Cloud Security Engineer implements security controls and threat protection, manages identity and access, and protects data, applications, and networks in cloud environments as part of an end-to-end Microsoft cloud infrastructure.

Responsibilities for the Cloud Security Engineer:

  • Architect, design, configure and deploy cloud-based security solutions for Kno2 according to application and customer requirements, HIPAA compliance requirements, industry best practices and latest security standards
  • Recommend cloud security requirements, engineering, design, and subsequent implementation, ensuring minimum disruption and impact to the business
  • Assist and coordinate with the engineering team as required
  • Preparation and updating of service-related architecture and design documentation
  • Provide technical leadership and guidance to colleagues in designated area of expertise
  • Provide project support, technical consultancy, and implementation planning
  • Promote and actively research the cloud platform and security services, identifying technologies and products consistent with global standards that can provide commercial and security benefit to the organization
  • Establish best-practice Microsoft security and information protection controls
  • Evaluate Azure cloud and third-party security services, tools, and appliances in the areas of (but not limited to): intrusion detection, intrusion prevention, packet capture, and quarantine
  • Support independent security audits of the Kno2 infrastructure including SOC 2 Type 2, HIPAA HITECH, and HITRUST certification.
  • Assess network/cloud security posture and recommend modifications for enhancement or improvement, and mitigations for vulnerability findings found by security services, tools, and appliances
  • Collaborate with partners and incident response teams regarding requirements and deployment of security services, tools, and appliances
  • Manage vendor relationships regarding security requirements and technical support
  • Identify, and remediating vulnerabilities by using a variety of security tools
  • Responding to security incident escalations.

Required Skills

  • At least five years of IT Information Security or related experience
  • Hands-on experience establishing and configuring security controls for Microsoft Azure and Microsoft 365 components
  • In-depth understanding of Microsoft cloud-based infrastructure components with specific understanding of the security risks presented in a decentralized and hybrid environment
  • Hands-on experience with cloud native networking concepts, encryption technologies, key management, and layer-7 attack and defense techniques
  • Understanding of defense against OWASP, DDOS, and other infrastructure threats from the edge
  • Strong Understanding of security as it relates to CDN, API management, and load balancing technologies
  • Strong understanding of Azure monitoring capabilities and setup rule-based alerts with response procedures
  • Comfortable automating processes start to finish and can work closely with engineering and application development teams to help integrate security into their existing processes
  • Experience with securing serverless automation and security administration in Azure
  • Experience creating security documentation and technical artifacts
  • Excellent verbal and written communication skills with a strong attention to detail

Desired Skills 

  • Azure and industry standard security product engineering certifications
  • Familiarity with modern cloud first development technologies & methodologies such as infrastructure as code, CI/CD and containers.
  • Experience with Cloudflare and related cloud security products
  • Scripting/Programming (PowerShell, Python) is a plus
  • Experience with HITRUST certification is a plus

If you are interested, please send your resume and a brief description to [email protected]!