Hello
Hope you are doing well.
Position: Unix/Linux Hybrid Cloud Security Engineer
Location: Naperville, IL
Job type: Contract
Job description: –
UNIX/Linux Hybrid Cloud Security Engineer is responsible for designing, implementing, and maintaining security controls and solutions across on-premises
and cloud environments within the organization’s hybrid cloud infrastructure.
This role plays a crucial part in ensuring the confidentiality, integrity, and availability of critical financial data and systems while adhering to industry
regulations and best practices.
Key Responsibilities:
Access and Authentication Management:
Design and implement robust access control mechanisms, including centralized authentication systems (e.g., LDAP, Kerberos, RADIUS) and
multi-factor authentication solutions.
Manage user accounts, privileges, and access rights across Unix/Linux systems, ensuring adherence to the principle of least privilege.
Collaborate with identity and access management teams to ensure seamless integration with enterprise-wide access management solutions.
Security Architecture and Design:
Collaborate with cross-functional teams to design and implement secure architectures for UNIX/Linux systems, containerized environments, and
cloud services (e.g., AWS, Azure, GCP).
Conduct risk assessments, threat modeling, and security reviews for new and existing systems.
Develop and maintain security blueprints, standards, and guidelines for hybrid cloud environments.
Secure Configuration and Hardening:
Develop and maintain secure configuration baselines for Unix/Linux systems, following industry best practices and regulatory compliance
requirements.
Implement and automate system hardening processes, including kernel tuning, file system security, and service hardening.
Perform regular vulnerability assessments and patch management activities to mitigate security risks.
Hybrid Cloud Security:
Design and implement secure architectures for Unix/Linux workloads in hybrid cloud environments, considering factors such as network
segmentation, data encryption, and access controls.
Collaborate with cloud service providers to ensure compliance with their security standards and best practices.
Develop and maintain secure automation scripts and tools for provisioning, configuring, and managing Unix/Linux systems in the cloud.
Incident Response and Forensics:
Participate in incident response procedures, conducting investigations and performing root cause analysis for security incidents involving Unix
/Linux systems.
Acquire and maintain proficiency in forensic analysis tools and techniques specific to Unix/Linux environments.
Collaborate with security operations teams to ensure timely detection, response, and mitigation of security incidents.
Security Operations and Hardening:
Implement and maintain security controls, including firewalls, intrusion detection/prevention systems, and security information and event
management (SIEM) solutions.
Perform system hardening, vulnerability management, and patch management across on-premises and cloud environments.
Monitor and respond to security incidents, escalating and coordinating incident response efforts as necessary.
Compliance and Governance:
Ensure compliance with industry regulations (e.g., PCI-DSS, SOX, GDPR) and internal security policies across hybrid cloud environments.
Collaborate with auditors and regulatory bodies to provide evidence of compliance and facilitate audits.
Implement and maintain security governance frameworks, including identity and access management (IAM), data protection, and encryption
strategies.
Automation and Scripting:
Develop and maintain automation scripts and tools to streamline security tasks, such as configuration management, vulnerability scanning, and
incident response.
Leverage infrastructure-as-code (IaC) principles to codify and automate secure infrastructure deployments.
Implement continuous integration and continuous deployment (CI/CD) pipelines with embedded security controls.
Processes, Procedures, and Documentation:
Develop and maintain comprehensive security policies, procedures, and technical documentation for hybrid cloud environments.
Establish and enforce secure coding practices, code review processes, and secure software development life cycle (SDLC) methodologies.
Conduct regular security awareness and training sessions for IT teams and stakeholders.
Contribute to the continuous improvement of security processes and procedures
Knowledge Transfer and Mentoring:
Provide subject matter expertise and guidance to cross-functional teams on security best practices and emerging threats.
Participate in security awareness and training programs for Unix/Linux administrators and developers
Mentor and support junior security engineers, fostering knowledge sharing and professional development.
Collaborate with vendors, partners, and the broader security community to stay abreast of industry trends and emerging technologies.
Continuously research and evaluate new security technologies and methodologies to enhance the organization’s security posture.
Qualifications and Requirements:
Bachelor’s degree in Computer Science, Information Security, or a related field, or equivalent experience.
Minimum of 7-10 years of experience in UNIX/Linux system administration and security roles.
Extensive knowledge of security principles, techniques, and best practices for on-premises and cloud environments.
Hands-on experience with security tools and technologies, such as firewalls, IDS/IPS, SIEM, vulnerability scanners, and secure coding practices.
Proficiency in scripting languages (e.g., Python, Bash, PowerShell) and infrastructure-as-code tools (e.g., Terraform, Ansible, Puppet).
Strong understanding of industry regulations and compliance requirements (e.g., PCI-DSS, SOX, GDPR).
Excellent communication and documentation skills for technical and non-technical audiences.
Ability to work in a fast-paced, dynamic environment and handle multiple priorities effectively.
Certifications such as CISSP, GIAC, or vendor-specific security certifications are highly desirable.
This role requires a combination of technical expertise, strategic thinking, and strong communication skills to ensure the organization’s hybrid cloud
infrastructure remains secure while enabling business growth and innovation.
From:
Durgesh Kumar Jha,
Gtech
dkjha@greattechglobal.com
Reply to: dkjha@greattechglobal.com