CCC is seeking a highly motivated Security Engineer to join our Security Engineering team. In this role, you will innovate and enhance CCC’s security strategy, driving our competitive advantage through robust security controls. You will focus on protecting and supporting current workloads, security tools, identifying security gaps, and enhancing the efficacy of CCC’s cloud technologies and solutions.

Key Responsibilities:

Cloud Security Engineering

• Assess, design, and implement security requirements into cloud-native architectures, including assisting in building a risk reducing security-focused cloud architecture.
• Integrate and configure Cloud Native Application Protection Platform (CNAPP) platforms for continuous security monitoring.
• Design and enforce remediation plans.
• Evaluate cloud environments for security misconfigurations and vulnerabilities.
• Collaborate to address vulnerabilities discovered by security solutions.
• Develop scripts to automate security tasks, gates, and guardrails within cloud implementations.

IAM Engineering and Risk Management

• Identify gaps via Cloud Infrastructure Entitlement Management (CIEM) and expand Identity & Access Management (IAM) controls and processes, including developing IAM processes, standard operating procedures, playbooks, and runbooks.
• Support IAM strategy, standards, processes, and technology.
• Analyze and leverage datasets to communicate risk to non-technical consumers, providing consultation on IAM solutions to resolve technical and business issues.

Operations and Collaboration

• Conduct daily administrative tasks, reporting, and communication.
• Interface with cloud and engineering teams to protect sensitive information.
• Troubleshoot security and network problems and respond to security alerts.

Technical Leadership

• Provide technical leadership in cloud adoption from a security perspective.
• Explore new technologies and architect new security processes.
• Act as a liaison between stakeholders in the business.

Requirements:

• Bachelor’s degree in computer science, Cybersecurity, or a related field.
• 3+ years of experience in cloud security with AWS, Azure, or GCP.
• Deep understanding of CNAPP concepts and technologies.
• Experience in security incident response and vulnerability management.
• Knowledge of common security frameworks and compliance standards (NIST, CIS, etc.).
• Deep knowledge of Identity & Authentication technology, procedures, and controls.
• Expertise in SSO technologies and authentication methods (OpenID Connect, SAML, oAuth, Kerberos, LDAP, etc.).
• Proficient in Azure AD, M365, and Azure Configuration tooling.
• Experience with hybrid identity and Privilege Access Management (PAM).
• Proficiency in public cloud technologies (AWS, Azure).
• Scripting and automation skills (APIs, Python, Bash, Powershell, Go).

Certifications Preferred

• Certified Cloud Security Professional (CCSP)
• Cloud Security Essentials (GCLD)
• Cloud Security Automation (GSCA)
• Networking Certifications (CCNA, etc.)
• Platform Certifications (Microsoft, Linux, Cisco, etc.)