Back to Jobs
Northeast region Remote (Country) Full-time

GuidePoint Security is hiring a CNAPP Cloud Security Engineer (Remote) - Northeast region

Responsibilities

  • Deploy CNAPP and CSPM solutions across multi-account AWS and Azure cloud environments.
  • Integrate infrastructure-as-code scanning tools into CI/CD pipelines.
  • Write infrastructure-as-code templates using CloudFormation or Terraform.
  • Build custom security policies in CNAPP platforms using JSON, REGO, or Terraform.
  • Analyze potential threats and vulnerabilities in public cloud networks, applications, and systems.
  • Lead remediation efforts for security findings in cloud environments.
  • Identify and address cloud, system, and application-level vulnerabilities.
  • Ensure compliance with CIS, NIST, AWS, and Azure security benchmarks.
  • Evaluate cloud identity and access management for excessive permissions and enforce IAM best practices.
  • Detect and mitigate exposure of secrets in virtual machines, containers, and IaC repositories.
  • Identify misconfigurations and security flaws in infrastructure-as-code templates.
  • Apply security best practices for Kubernetes and microservices architectures.
  • Conduct scanning of container image registries for vulnerabilities.
  • Define and maintain metrics, KPIs, and KRIs to monitor cloud security health.
  • Develop and update runbooks for consistent cloud configuration assessments.
  • Evaluate the security posture of cloud infrastructure and workloads.
  • Provide expert guidance on cloud security strategies and improvements.

Work Arrangement

Remote

Responsibilities

  • Perform implementation of CNAPP and CSPM tools in multi-account AWS and Azure environments.
  • Implement IaC scanning tools within the CI/CD Pipelines.
  • Develop Infrastructure as code in Cloud Formation or Terraform.
  • Develop custom control checks within CNAPP Platforms using JSON, REGO, or Terraform.
  • Analysis – identifies and evaluates potential threats and vulnerabilities to the public cloud environments network, applications, infrastructure, and systems.
  • Issue Resolution – leads the resolution of identified issues in public cloud environments.
  • Vulnerabilities – Cloud, System, and Application
  • Compliance – CIS, NIST, AWS, and Azure best practices.
  • Cloud Entitlements – Excessive Permissions and various IAM best practices.
  • Secrets – unprotected secrets on VMs, Containers, and IaC repositories.
  • IaC – misconfigurations and vulnerabilities within developed IaC.
  • Deep understanding of Kubernetes and microservices security best practices.
  • Performs container registry scanning.
  • Reviewing and creating metrics, KPIs, and KRIs to track overall cloud security posture.
  • Create, maintain, and update runbooks for cloud configuration checks.
  • Assess the overall security posture of cloud security infrastructure and workloads.
  • Advise customers on Cloud security best practices.
About company
GuidePoint Security
GuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk. By taking a three-tiered, holistic approach for evaluating security posture and ecosystems, GuidePoint enables some of the nation’s top organizations, such as Fortune 500 companies and U.S. government agencies, to identify threats, optimize resources and integrate best-fit solutions that mitigate risk.
All jobs at GuidePoint Security Visit website
Job Details
Category security
Posted 3 days ago