CEF Solutions Inc. is a Consulting Services and Business Process Outsourcing (BPO) company specialized in providing BPO Operations, Operations Management, Process Engineering and Innovation, and Cost Optimization solutions to clients in the Customer Service industry. We service some of the largest multinational companies in the world and are expanding quickly by delivering an unmatched end-to-end client experience.
JOB DESCRIPTION:
As a SecOps Engineer, you will be responsible for ensuring the security of our systems and infrastructure. You will work closely with our development and DevOps teams to identify and remediate vulnerabilities, implement security best practices, and automate security processes. You will conduct security assessments of our systems and infrastructure to identify vulnerabilities and risks and identify risk owners and implement mitigating controls.
The SecOps engineer will build and run high-quality, secure, and non-impactful deployments for our platform. We do continuous integration and deployment to development and test environments, as well as multiple production releases per day. This is a highly technical position that requires a broad set of cloud security skills, including deployment technologies, monitoring, scripting, networking, and infrastructure.
ROLE AND RESPONSIBILITIES:
- Work directly with our clients as an AWS Cloud SecOps Engineer.
- Improve and remediate security in existing AWS accounts, infrastructure, and resources based on corporate security standards and AWS security best practices.
- Experience with remediating security in IAM, S3, Security Groups, NACL, IGW, NFW, VPC, Endpoints and other AWS resources.
- Expertise in writing JSON IAM and S3 policies – deep understanding of AWS policy language.
- Experience in AWS account security auditing.
- Experience in scripting using AWS APIs (boto3 or AWS CLI).
- Understanding of TCP/IP networking principles.
- Develop and maintain secure and reliable cloud infrastructure (OS security patching, secure backups, monitoring, secure logging, and IAM user account creation).
- Support or modify underlying AWS infrastructure and services for security hardening.
- Familiarity with cloud deployment automation, as well as CI/CD pipeline builds to support cloud-based workloads.
- Provide experience, knowledge and develop competency on Terraform, Ansible and Cloud native automation tools.
- Stay on top of the latest AWS security trends and develop expertise in emerging cloud security technologies.
- Develop and maintain technical documentation in Atlassian Confluence.
- Excellent experience using Atlassian Jira ticketing and Jira project management.
- Troubleshoot technical security issues.
QUALIFICATIONS:
- AWS Security-Specialty certification with minimum 3 years practical experience securing AWS environments.
- Master’s or Bachelor’s degree in Computer Science, Computer Engineering, Electrical Engineering or related technical field, and two years of experience in related software or systems.
- 8+ years overall industry experience.
PREFERRED QUALIFICATIONS:
- DevOps: automation experience on Amazon AWS.
- Cloud: Amazon AWS, AWS Marketplace, PaaS, IaaS, SaaS.
- Platforms and tools: Bash, python or other scripting languages.
- DevOps/Automation: Terraform, Ansible.
- Experience with networking and compute infrastructure such as servers, database, firewalls and load balancers.
- Experience with current information security practices and procedures.
- Cloud Solutions Architect-Associate level or above and AWS Security Specialty certifications.
- Hands-on experience with Jira and Confluence.
- Excellent interpersonal and organizational skills.
- Excellent oral and written communication skills.
OTHER QUALIFICATIONS:
- Legally authorized to work in the U.S. without any restrictions.
- Okay to work 100% on-site in Mountain View, CA.