Cloud Security Engineer

Are you ready to be part of a company that's not just talking about the future, but actively shaping it? Join The AES Corporation (NYSE : AES), a Fortune 500 company that's leading the charge in the global energy revolution.

With operations spanning 14 countries , AES is committed to shaping a future through innovation and collaboration. Our dedication to innovation has earned us recognition as one of the Top Ten Best Workplaces for Innovators by Fast Company in 2022.

And with our certification as a Great Place to Work , you can be confident that you're joining a company that values its people just as much as its groundbreaking ideas.

AES is proudly ranked #1 globally in renewable energy sales to corporations, and with $12.7B in revenues in 2023 , we have the resources and expertise to make a significant impact as we provide electricity to 25 million customers worldwide.

As the world moves towards a net-zero future, AES is committed to meeting the Paris Agreement's goals by 2050. Our innovative solutions, such as 24 / 7 carbon-free energy for data centers, are setting the pace for rapid, global decarbonization.

If you're ready to be part of a company that's not just adapting to change, but driving it, AES is the place for you. We're not just building a cleaner, more sustainable future - we're powering it.

Apply now and energize your career with a true leader in the global energy transformation.

Summary

The AES Cyber Security Team is looking for a Cloud Security Engineer responsible for assisting in the maintenance and improvement of cyber security services and technologies to monitor and defend cloud environments.

The individual in this position will work as a member of the Cyber Defense organization responsible for a variety of cybersecurity functions utilizing their understanding of cyber security practices and technologies.

The candidate should demonstrate ability to design security architecture, author technical documentation including configuration and implementation guides for cloud services, guide application teams to migrate to the cloud with a secure and innovative mindset;

and adhere to the same standards within development of internal projects.

Responsibilities

• Architect, implement, and test cyber security tools for effectiveness with minimal guidance.
• Assist in the management and monitoring of the Cloud Native Application Protection Platform (CNAPP).
• Ensure deployment and coverage of security technologies and standards across cloud environments.
• Establish metrics and service level agreements (SLAs) for the remediation of identified misconfigurations or identified threats across the cloud environment.
• Create and maintain cloud security playbooks to include security automation, policy tuning, and incident response. Assist in the connection of cloud security tools with other threat and vulnerability management initiatives.
• Research, design, and test known tactics, techniques, and procedures used in cloud security attacks to validate effectiveness of security controls across the cloud environment.
• Assist in the approval and onboarding of new Software as a Service (SaaS) solutions in use by the organization. Ensure security controls are applied to new and existing SaaS solutions.

Required Skills :

• 3+ years of cyber security, systems administration, networking and / or cloud engineering experience.
• Hands on experience in automation (Python, PowerShell, Golang, etc).
• Familiarity with Agile methodologies and DevOps concepts .
• Excellent communication skills (verbal and written), including proficiency in English.
• Ability to work in an environment with evolving requirements and dynamic schedules.

Desired Skills :

• Expert knowledge of enterprise-grade security technologies and capabilities (e.g. SIEM, DLP, EDR, IPS, Firewalls, Web Security, etc.)
• Experience participating on a DevOps engineering team utilizing CI / CD deployment methods
• Prior experience with red or purple team exercises in the scope of cloud assets and technologies.
• Prior experience with AWS, Azure, or Google Cloud.
• Prior experience with cyber security tools and capabilities for SaaS cloud applications.
• Prior experience with cyber security incident response.

The ideal candidate will be based in East coast. However, we are open to candidates to work remotely.