Infrastructure Cloud and Security Engineer

VACO LLC
Tampa, United States of America
17 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Compensation
$ 125K

Job location

Tampa, United States of America

Tech stack

Microsoft Active Directory
Artificial Intelligence
Amazon Web Services (AWS)
Software System Penetration Testing
Authentication Protocols
Azure
Cloud Computing
Computer Security
Data Deduplication
Multi-Factor Authentication
VMware ESX Servers
Identity and Access Management
Virtual Private Networks (VPN)
Windows Server
Performance Tuning
Role-Based Access Control
Azure
Cloud Services
Phishing
Server Administration
Security Information and Event Management
Single Sign-On
VMware Infrastructure
VMware Virtualization
vSphere
Okta
System Availability
Multi-Cloud
HybridCloud
Cloudformation
Cybercrime
Vcenter
Microsoft Sentinel
Terraform
Splunk
Vulnerability Analysis
VMware

Job description

Cloud Infrastructure

  • Manage and optimize cloud infrastructure and services
  • Design and implement cloud solutions for scalability, redundancy, and cost efficiency.
  • Monitor cloud resources, manage access controls, and ensure compliance with security best practices.
  • Experience with Infrastructure as Code
  • Understanding of hybrid cloud or multi-cloud connectivity (VPN, Direct Connect)
  • Container and orchestration awareness

Cybersecurity Strategy & Operations

  • Develop and maintain a comprehensive cybersecurity strategy aligned with business objectives.
  • Design and implement security controls, systems, and protocols to protect company assets from cyber threats.
  • Experience with SIEM platforms and security event monitoring (Microsoft Sentinel, Splunk, or equivalent)
  • Familiarity with EDR/XDR solutions for endpoint threat detection
  • Knowledge of DLP tools
  • Conduct regular security assessments, vulnerability scans, and penetration testing to identify and address potential security weaknesses.
  • Design and implement email security protocols and technologies to protect against phishing, spam, and malware threats.
  • Configure and manage email security gateways, filters, and encryption mechanisms.

Identity & Access Management (IAM)

  • Design and implement IAM solutions and frameworks to manage user identities, access permissions, and authentication mechanisms.
  • Define and enforce access policies, roles, and privileges across the organization.
  • Implement single sign-on (SSO) solutions and multi-factor authentication (MFA) mechanisms
  • Hands-on experience with Azure Active Directory (Entra ID) or Okta for identity management
  • Familiarity with Privileged Access Management (PAM) solutions
  • Experience implementing RBAC and ABAC models in enterprise environments
  • Knowledge of identity lifecycle management

Ancillary Responsibilities:

  • Manage and maintain Windows server environments, including server installation, configuration, and administration.
  • Implement and optimize Active Directory services, Group Policies, and domain services.
  • Monitor server performance, troubleshoot issues, and ensure system security and stability.
  • Administer Windows-based systems, including installation, configuration, and management.
  • Implement security measures and perform regular system updates and patches.
  • Deploy, configure, and manage VMware virtualization technologies, including vSphere, vCenter, and ESXi.
  • Monitor virtual infrastructure performance, capacity planning, and resource optimization.
  • Implement high availability and disaster recovery solutions using VMware technologies.
  • Design, implement, and manage backup and disaster recovery solutions for critical data and systems.
  • Monitor storage systems, capacity planning, and performance tuning to ensure optimal performance.
  • Implement data encryption, compression, and deduplication techniques to maximize storage efficiency.

Determining compensation for this role (and others) at Vaco/Highspring depends upon a wide array of factors including but not limited to the individual's skill sets, experience and training, licensure and certifications, office location and other geographic considerations, as well as other business and organizational needs. With that said, as required by local law in geographies that require salary range disclosure, Vaco/Highspring notes the salary range for the role is noted in this job posting. The individual may also be eligible for discretionary bonuses, and can participate in medical, dental, and vision benefits as well as the company's 401(k) retirement plan. Additional disclaimer: Unless otherwise noted in the job description, the position Vaco/Highspring is filing for is occupied. Please note, however, that Vaco/Highspring is regularly asked to provide talent to other organizations. By submitting to this position, you are agreeing to be included in our talent pool for future hiring for similarly qualified positions. Submissions to this position are subject to the use of AI to perform preliminary candidate screenings, focused on ensuring minimum job requirements noted in the position are satisfied. Further assessment of candidates beyond this initial phase within Vaco/Highspring will be otherwise assessed by recruiters and hiring managers. Vaco/Highspring does not have knowledge of the tools used by its clients in making final hiring decisions and cannot opine on their use of AI products.

Requirements

  • Hands-on with AWS and/or Azure (cloud infra, IaC with Terraform/CloudFormation)
  • Cybersecurity experience: SIEM (Sentinel/Splunk), EDR/XDR, DLP, vulnerability scanning, pen testing
  • IAM: Azure AD (Entra ID) or Okta, SSO, MFA, PAM, RBAC/ABAC
  • Windows Server, Active Directory, Group Policy management
  • VMware: vSphere, vCenter, ESXi

Apply for this position