Job Description

Job Summary: This is a full-time employment position for a Security Engineer dedicated primarily to establishing and supporting security standards and solutions for Avnet\'s cloud services. As a member of Avnet\'s Global Cybersecurity & Compliance (GC&C) team, the Security Engineer will support Avnet\'s Cloud Center of Excellence (CCOE) in the transition and modernization of on-prem applications to Azure and other cloud service providers by identifying, developing, documenting, and communicating cloud security governance, controls, policies, standards, and best practices, collaborating to ensure controls are deployed and effective, and reporting cloud security metrics. The Security Engineer must have strong Engineering skills, especially surrounding Azure Security, and strong Scripting skills (Python, PowerShell are preferred but other languages are acceptable). Principal Responsibilities: Research cloud computing and related security technologies, capabilities, and products Configure, deploy, and support the GCC team\'s enterprise cloud security tools Identify and assess security gaps in cloud services and recommend appropriate solutions Work with IaaS, PaaS, and SaaS owners, administrators, and developers, assisting with their development and implementation of cloud security controls and remediation of vulnerable cloud resources Provide consulting and formal reviews as needed for cloud initiatives and projects Guide project teams, developers, and administrators in the execution of cloud services to adhere to industry best practices for security and align with Avnet\'s risk appetite and compliance requirements Work closely with security operations to ensure adequate visibility and monitoring of security events and alerts, support for vulnerability management and incident response, and collaborate to evaluate threats relevant to cloud workloads and data Understand business goals and needs to provide a balanced security investment Expand expertise as the technology and the business evolves Provide on-call support as part of the team on call rotation duties and other duties as assigned. Job Level Specifications: Deep technical knowledge of Azure and strong understanding of SaaS and application workload security in the context of cloud services Strong knowledge of Linux, Windows, networking, storage, containerization, encryption, API security, auditing, access control and authentication (Azure RBAC, Azure AD, SAML/OATH/LDAP etc.) Understanding of DevSecOps or similar operating experience and infrastructure as code (IaC) Ability to automate tasks through scripting (Powershell, Python, or equivalent). Experience designing, procuring, testing, building, deploying, and supporting security tools and secure solutions Flexible approach - the position may occasionally be required to provide out of normal office hours support Very good communication, collaboration, and interpersonal skills and strong ability to work well independently, adapt easily and handle crisis situations Must have the passion, discipline, wisdom, creativity, and curiosity to drive positive results Mastery knowledge of industry best practices and disciplines. Considered a subject matter expert within the organization and contributes to the development of new concepts, techniques and standards. Develops solutions to highly complex and uniquely challenging situations. Assignments require extensive evaluation of alternatives and variables. Expected to make improvements to policies and procedures. Works independently toward long-range goals and objectives. Assignments are often self-initiated using independent judgment and discretion. May act as informal team lead and/or coach less experienced team members. Serves as consultant to management and/or internal/external spokesperson for the organization on major initiatives related to policies, plans and long-range objectives. Actions may impact the organization and its reputation. Effects of erroneous decisions may be long-lasting, influence the future course of the organization and/or require the expenditure of extensive additional resources. Work Experience: Typically 4+ years with bachelor\'s or equivalent. Education and Certification(s): Bachelor\'s degree or equivalent experience from which comparable knowledge and job skills can be obtained. Preferred: Relevant Azure certifications, such as AZ-500, AZ-305, or security focused certifications like CCSK, CISSP, GIAC certifications, etc. Distinguishing Characteristics: May require competency in all of the six Security competencies: Security Intelligence, Identity Management, Compliance, Secured Infrastructure, Secured Development and Security Education

foundit