Cloud Security Engineer

Description

Tyler Technologies, a leading company in the Gov Tech industry, is currently looking to hire a Cloud Security Engineer to drive our Cloud security practices within the Courts & Justice division. The ideal candidate will possess a successful track record of leading Cloud security projects and initiatives.

The ideal candidate will be responsible for the secure operations of cloud infrastructure, platforms, and software, including the installation, maintenance, and improvement of cloud computing environments for our Courts and Justice software products. The role demands a candidate with deep technical acumen to oversee and expand our Cloud security posture. Outstanding collaborative and communicative abilities are essential, as this position involves significant coordination with the Product Management, Engineering, DevOps, and Cloud Operation departments to ensure the security of our platforms and services.

Responsibilities:

• Security Architecture: Contribute to the design and implementation of security frameworks and policies for cloud environments.
• Access Control: Managing access to cloud services and platforms, ensuring least privilege access.
• Security Tooling: Installing, maintaining, and improving security tools and services.
• Security Assessments: Conducting security audits and assessments to identify and mitigate vulnerabilities.
• Compliance: Ensuring compliance with relevant security regulations and standards.
• Incident Response: Developing and executing incident response plans to address security incidents.
• Monitoring and Alerting: Implementing security monitoring and alerting systems to detect and respond to threats.
• Vulnerability Management: Identifying and addressing vulnerabilities in cloud environments.
• Encryption: Utilizing encryption to protect data at rest and in transit.
• Cloud Infrastructure: Managing and securing cloud infrastructure components like servers, databases, and networks.
• Data Protection: Protecting sensitive data from unauthorized access and breaches.
• Threat Detection and Prevention: Recognizing and preventing threats to cloud systems and applications.
• Collaboration: Working with other teams, such as Cloud Operations, Engineering and Development, to integrate security into cloud deployments. Advise Product Management on enterprise policies and technical standards with specific regard to vulnerability management and secure configuration. Work with DevOps to ensure the Cloud is built securely using IaC and manage cloud security posture management
• Policy Development: Creating and enforcing security policies to govern cloud usage.
• Risk Assessment: Evaluating and mitigating potential security risks in cloud environments. Partner with Cloud Security Architecture to drive the security strategy and provide input into cloud security patterns to build Zero Trust architecture

Qualifications:

• Bachelor's degree in Cybersecurity, Computer Science, or related field
• 5+ years of combined experience in one or more of the following areas: secure software development, SaaS, cloud security, security architecture and/or security engineering
• Secure software development lifecycle (SSDLC) experience
• Programming abilities and understanding of secure coding practices
• Experience and knowledge with Identity and Access Management security controls
• Experience and knowledge with Container Orchestration security controls
• Experience with Cloud Provider (e.g., AWS preferred, Azure, Google Cloud Platform) security controls
• Experience with security tools (e.g., SAST, SCA, vulnerability scanning, penetration testing)
• Understanding of Agile software development practices
• Experiences with DevOps (CI/CD)
• Understanding of security by design principles, architecture level security, and zero trust security concepts
• Up to date knowledge of current and emerging security threats and techniques for exploiting security weaknesses
• Understanding of industry compliance and security standards (e.g., PCI DSS, ISO 27001, SOC1 and 2)