Cloud Security Specialist

Be inspired. Be rewarded. Belong. At Emory Healthcare.

At Emory Healthcare we fuel your professional journey with better benefits, valuable resources, ongoing mentorship and leadership programs for all types of jobs, and a supportive environment that enables you to reach new heights in your career and be what you want to be. We provide:

Comprehensive health benefits that start day 1

Student Loan Repayment Assistance & Reimbursement Programs

Family-focused benefits

Wellness incentives

Ongoing mentorship, development, and leadership programs

And more

Work Location: Remote

Description

The Cloud Security Specialist directs and provides hardening guidance for cloud services from Cloud Service Providers such as Amazon, Azure and Google.

You Will:

Develops, implements, monitors and enhances data security policies, procedures, and standards related to AWS Azure, and GCP.

Works with a team of Cloud Security Professionals where work is assigned via scaled agile methodology and distributed based on priority and skillset of team members.

Perform in-depth risk assessments to ensure that the security safeguards and controls are aligned with our security policy and standards.

Review infrastructure design on-premises and on the Cloud (inclusive of container security architecture, data security architecture, network security architecture, and operational security architecture).

Assess the infrastructure and microservices design against different security regulatory, industry and internal standards which are based on NIST, HIPAA security guidelines and identify the necessary security architecture requirements.

Execute on Cloud security engagements during different phases of the lifecycle, assess, design and implementation.

Implementing industry-leading practices around cyber risks and cloud security.

Research, create, develop and enforce security policies, standards and procedures to ensure the protection of the organizations security and systems as specified by the HIPAA/NIST control framework.

Provide IT and business resources guidance in interpreting security compliance requirements and performing application and system security assessments.

Minimum Qualifications:

5+ years of relevant information security and information risk management experience.

3+ years of relevant experience in Public Cloud Security, including IaaS, PaaS and SaaS.

Skills/Abilities/Competencies:

Familiarity of Infrastructure as a Service, Infrastructure as Code and related concepts on Azure or Amazon Web Services (AWS).

Knowledge of cybersecurity concepts, including threats, vulnerabilities, security operations, encryption, boundary defense, auditing, authentication and risk management.

Skilled experience in Cloud Security Architecture and Microservices Security (e.g. Tenant Security, AKS Security, Containers Security, Pod Security, Application Gateway & WAF, Security Groups and VNET Segmentations, Security Analytics, etc.).

Knowledgeable in the dependencies related to end-point security and interaction with other components such as privilege management system, SIEM, SOAR, vulnerability management solution and operating model, PKI/Encryption technology, Firewall/IPS, WAF etc.

Understanding the dependencies related to application security best practices such as secure coding, security testing techniques.

Working knowledge of common and industry standard cloud-native/cloud-friendly authentication mechanisms (OAuth, OpenID, etc.).

Experience and exposure to threat modelling and design reviews to assess security implications and requirements for the introduction of new technologies.

Skilled in representing technical viewpoints to diverse audiences and in making timely and prudent technical risk decisions.

In-depth understanding in applying native cloud security and monitoring services in the cloud, including network firewalls, access control lists, encryption, auditing and monitoring, alerting, secrets management and compliance scanning.

Knowledge of configuration management technologies (i.e., SaltStack and Ansible), Infrastructure Automation Technologies (i.e., Terraform), Containerization and Cloud Orchestration Technologies (i.e., Kubernetes, Dockers), Windows/Linux and related services (i.e., Active Directory, DNS, MSSQL).

Experience with DevOps Concepts and DevOps tooling such as Terraform, GitHub, Jenkins, SaltStack, XL Release, Bit Bucket.

Skilled in full software or systems development life cycle, including requirements analysis, design, integration, testing and implementation.

Knowledge of federal IT and cloud security policies, including FISMA, FedRAMP, NIST 80053, and DoD Cloud SRG and applying them to the design and implementation of cloud solutions to achieve an authorization to operate (ATO).

Technology Risk Management & Compliance experience.

Cloud Migration Experience Azure & Google.

Additional Details

Supporting a diverse, equitable and inclusive culture. Emory Healthcare (EHC) is dedicated to providing equal opportunities and access to all individuals regardless of race, color, religion, ethnic or national origin, gender, genetic information, age, disability, sexual orientation, gender identity, gender expression and/or veteran's status. EHC does not discriminate on the basis of any factor stated above or prohibited under applicable law. EHC respects, values, and celebrates the unique perspectives and backgrounds of all individuals. EHC aspires to create an environment of collaboration and true belonging for all our patients and team members. Emory Healthcare (EHC) is committed to achieving a diverse workforce through equal opportunity and nondiscrimination policy in all aspects of employment including recruitment, hiring, promotions, transfers, discipline, terminations, wage and salary administration, benefits, and training.

ACCOMMODATIONS: EHC will provide reasonable accommodation to qualified individuals with disabilities upon request. To request this document in an alternate format or to request a reasonable accommodation, please contact the Office of Diversity, Equity, and Inclusion.”

PHYSICAL REQUIREMENTS: (Medium-Heavy) 36-75 lbs., 0-33% of the work day (occasionally); 20-35 lbs., 34-66% of the workday; (frequently); 10-20 lbs., 67-100% of the workday (constantly); Lifting 75 lbs. max; Carrying of objects up to 35 lbs.; Occasional to frequent standing & walking; Occasional sitting; Close eye work (computers, typing, reading, writing); Physical demands may vary depending on assigned work area and work tasks. ENVIRONMENTAL FACTORS: Factors affecting environmental conditions may vary depending on the assigned work area and tasks. Environmental exposures include, but are not limited to: Blood-borne pathogen exposure; Bio-hazardous waste Chemicals/gases/fumes/vapors; Communicable diseases; Electrical shock; Floor Surfaces; Hot/Cold Temperatures; Indoor/Outdoor conditions; Latex; Lighting; Patient care/handling injuries; Radiation; Shift work; Travel may be required; Use of personal protective equipment, including respirators; environmental conditions may vary depending on assigned work area and work tasks.

Regular Full-Time