Bechtel Corporation AWS Cloud Security Engineer-Reston in Reston, Virginia

Requisition ID: 211778

  • Internal Candidate Under Consideration: No

  • Relocation Authorized: None

  • Project No.: 00000

  • Grade: 26-27

The Bechtel Information Security and Compliance team is seeking a well-rounded Information Cloud Security Engineer that has demonstrated expertise with AWS, Azure and other cloud environments. The engineer will assist in planning, building, configuration, deployment, running, automating and maintaining the security of the environments.

This position located in one of the following locations: Reston, VA Oakridge, TN or Glendale, AZ.

Duties will include the following:

  • Manage the design, testing, launch, automation, and continuous improvement of Bechtel’s cloud security solutions in AWS with a DevSecOps approach to cloud security

  • Engineer and implement cloud security tools and techniques to ensure the ongoing security and compliance of all cloud implementations

  • Work with external vendor providers, and internal Engineering, Operations, and Security teams to integrate and enhance cloud security and security solutions

  • Provide subject matter expertise in AWS and other Cloud technologies and support security documentation by providing SME input into policy, standards, and guidelines

  • Train operations personnel, application support groups and other engineers in tools, technologies and procedures

  • Proactively advise the business on how to maintain security posture and provide implementation support

  • Research into vendor and open source solutions in the cloud integration and management space, and determine their place in our overall solution

  • Travel to Bechtel offices as needed

Responsibilities:

  • Secure enterprise information by determining cloud security requirements; planning, implementing, and testing

  • Preparing cloud security standards, policies and procedures; and mentoring colleagues

  • Determine secure solution requirements by evaluating business strategies and researching cloud information security standards and adhering to leading industry practices

  • Define and maintain cloud security risk assessment policies and procedures for the AWS environment

  • Lead AWS initiatives to secure cloud solutions by specifying methodologies; implementation and calibration; preparing preventive and reactive measures and support documentation

  • Develop scripts, tools or methodologies to monitor and automate the threat detection, vulnerability, changes etc. using AWS tools (e.g. AWS Config, Inspector, Trusted Advisor, Cloud Watch, Cloud Trail, Guard Duty, Macie, AWS CLI, etc.) and third-party tools

  • Maintain cloud security by monitoring and ensuring compliance to standards, policies, and procedures

  • Identify cloud security gaps; evaluate and recommend / lead enhancements

Basic Qualifications:

  • BS in a computer related field or 15 years of equivalent IT work experience

  • 8+ years of Information Security experience

  • 3+ years of experience focused on AWS cloud environments and supporting infrastructure

  • 2+ years of information security & privacy or cyber risk management experience. Ideally technical experience.

  • 2+ years in systems engineering role supporting public or private clouds

  • US Citizenship

Additional Qualifications:

  • 3+ years of experience in automation technologies

  • Experience in AWS Cloud Security Architecture designs and Best practices, IAM roles and policy, KMS, Network security (VPC), Security Groups

  • Experience building scalable solutions on AWS

  • Technical experience with Linux

  • Proven track record of driving decisions collaboratively, resolving conflicts and ensuring follow through with exceptional verbal and written communications

  • Experience maintaining unified security solutions across disparate cloud technologies, accounts, services, and landscapes

  • CISSP, GIAC, CEH and other relevant technical certifications a plus

  • Excellent verbal and written communication skills and the ability to interact professionally with a diverse group, executives

  • Nice to have: AWS certification (associate or higher)

BOPS Guidelines include the minimum time that you need to be in your current position before applying to a new position. Please refer to the Guidelines and ensure you meet the minimum requirements.