Job Title: Data Security Engineer / Specialist (Cohesity, PKI/Venafi, Azure Security)
Location: OR Portland
Years of Experience-10 Years
Job Summary
We are seeking a highly skilled Data Security Engineer to design, implement, and manage enterprise data protection and security solutions. The ideal candidate will have strong expertise in Cohesity, PKI (Public Key Infrastructure) with tools like Venafi, and Azure Cloud Security, along with a broader understanding of data protection, encryption, identity security, and compliance frameworks.
Responsibilities
- Cohesity Data Protection & Backup Security:
- Design, implement, and manage Cohesity backup and data management solutions.
- Ensure secure backup architecture including immutability, ransomware protection, and disaster recovery.
- Implement backup security controls, access governance, and disaster recovery capabilities.
- Develop data protection controls across on premises, hybrid, and cloud environments.
- PKI & Certificate Management (Venafi):
- Design and manage enterprise PKI infrastructure.
- Ensure compliance with certificate governance and cryptographic standards.
- Manage HSM integrations and key protection strategies.
- Azure Cloud Security:
- Implement and maintain Azure security controls across IaaS, PaaS, and SaaS.
- Configure and manage Azure Key Vault for key and secret management.
- Utilize Azure Defender / Microsoft Defender for Cloud.
- Enforce identity and access management via Azure AD, RBAC, and Conditional Access.
- Data Protection & Governance:
- Implement encryption controls for data at rest and in transit.
- Define and maintain data classification and retention policies.
- Support compliance requirements including GDPR, HIPAA, PCI DSS, ISO 27001, SOC2, NIST, and DORA.
Mandatory Skills (Must Have)
- Expertise in Cohesity (Backup, recovery, data protection, ransomware protection).
- Strong understanding of PKI fundamentals and operations.
- Experience with Venafi (Certificate lifecycle management and automation).
- Proficient in Azure Cloud Security, specifically Azure AD.
- Knowledge of Compliance Management and Assessments principles and practices.
Preferred Skills (Good to Have)
- Experience with additional cloud security tools and frameworks.
- Familiarity with data loss prevention (DLP) technologies.
- Knowledge of security compliance frameworks beyond those listed in mandatory skills.
- Certifications in relevant areas (e.g., CISSP, CISM, Azure Security Engineer).
Qualifications
Bachelor''s degree in Computer Science, Information Technology, or a related field. A minimum of 7 10 years of experience in data security, with a focus on enterprise level solutions. Strong analytical and problem solving skills, along with excellent communication and collaboration abilities.