VetJobs - The Leading Military Job Board

Overview Baker Tilly US, LLP (Baker Tilly) is a leading advisory CPA firm, providing clients with a genuine coast-to-coast and global advantage in major regions of the U.S. and in many of the world's leading financial centers - New York, London, San Francisco, Los Angeles and Chicago. Baker Tilly is an independent member of Baker Tilly International, a worldwide network of independent accounting and business advisory firms in 145 territories, with 41,000 professionals and a combined worldwide revenue of $4.7 billion. Please discuss the work location status with your Baker Tilly talent acquisition professional to understand the requirements for an opportunity you are exploring. Baker Tilly is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability or protected veteran status, gender identity, sexual orientation, or any other legally protected basis, in accordance with applicable federal, state or local law. Any unsolicited resumes submitted through our website or to Baker Tilly US, LLP, employee e-mail accounts are considered property of Baker Tilly US, LLP, and are not subject to payment of agency fees. In order to be an authorized recruitment agency ("search firm") for Baker Tilly US, LLP, there must be a formal written agreement in place and the agency must be invited, by Baker Tilly's Talent Attraction team, to submit candidates for review via our applicant tracking system. Responsibilities Are you driven by solving complex problems in Enterprise Technology environments and are interested in an opportunity in a growth-oriented, innovative firm? Do you have a passion for developing technology strategies firmwide? The Senior IT Engineer - Security provides technology services to the enterprise through technical project management, systems administration, and direct support duties. Successful Candidate will have experience in:

• Cloud Security Architecture: Design and implement secure cloud architectures for various cloud platforms such as AWS, Azure, Google Cloud, or others. This includes creating network security models, identity and access management (IAM) policies, and data protection strategies.
• Risk Assessment and Mitigation: Identify potential security risks and vulnerabilities in cloud environments and take steps to mitigate them. Conduct regular risk assessments and vulnerability scans.
• Identity and Access Management (IAM): Manage and configure IAM policies and controls to ensure that only authorized personnel have access to cloud resources and data.
• Security Monitoring and Incident Response: Set up monitoring systems to detect security breaches and incidents. Develop and implement incident response plans to address security breaches promptly.
• Security Automation: Develop scripts and automation to streamline security tasks, such as continuous security monitoring, compliance checks, and threat detection.
• Incident Handling: Lead or assist in the investigation and resolution of security incidents, including root cause analysis and implementing corrective actions.
• Cloud Provider Knowledge: Stay up-to-date with the latest cloud security features and offerings from cloud service providers and apply them effectively to enhance security.
• Security Documentation: Maintain comprehensive documentation of security configurations, policies, and procedures.
• Vendor and Third-Party Security: Assess and manage the security of third-party services and vendors that interact with the organization's cloud infrastructure.
• Security Policies and Compliance: Understanding and enforce cloud security policies, standards, and best practices. Ensure compliance with industry regulations and standards, such as GDPR, HIPAA, SOC2, CMMC and HITRUST

Qualifications

• Advanced systems administration skills, minimum 5 years experience.
• Majo industry certifications from Microsoft and Cisco preferred.
• Understanding and enforce cloud security policies, standards, and best practices. Ensure compliance with industry regulations and standards, such as GDPR, HIPAA, SOC2, CMMC and HITRUST

Additional Information #LI-AT1