Cloud Security Engineer

Company Overview At Hexagon US Federal we provide cutting-edge technologies and a wide range of professional services to enable our customers to make smarter and faster operational decisions and improve mission effectiveness. Hexagon US Federal is an independent subsidiary of Hexagon Corporation exclusively focused on bringing the broad range of Hexagon technologies to the US Federal government and its partners.

A day in the life of a Cloud Security Engineer: As a Cloud Security Engineer with Hexagon US Federal you will be routinely creating, managing, and refining many different technologies and solutions that support Hexagon’s software suite. The Cloud Security Engineer is an integral part of managing deployments in Microsoft Azure.

The work the Cloud Security Engineer performs daily is key to managing the current infrastructures and helps to future proof new opportunities.

This job is for you if you: Are passionate about working within the Azure Cloud Environment and want to help build solutions that can utilize the cloud platform to its fullest. Additionally, if you want to continuously learn new and cutting-edge technologies to help solve complex problems and make a meaningful impact daily across multiple projects and environments at once, then this job is for you.

What we are expecting from you (i.e. the qualifications you must have):

• Azure Security Engineer Associate (AZ-500) or CompTIA CySA+
• Bachelor’s degree with 5+ years of applicable experience or 7+ years of applicable experience.
• CompTIA Security+ certification or must be obtained with 6 months of hire date.
• Must be able to travel to customer sites occasionally.
• Must be able to work both independently and as part of a geographically dispersed team with little supervision and guidance.
• Ability to make use of provided resources and seek guidance as needed.
• Ability to communicate effectively, both orally and in writing.
• A well organized, self-directed, detail and process-oriented individual.
• Ability to investigate problems or malfunctions and find solutions or corrective actions.
• Ability to work directly with customers to gather requirements and to resolve problems.
• Ability to keep abreast of changing software technology.

Preferred Experience:

• 3-5 years of experience deploying and administering security resources in an Azure Environment.
• 2-3 years of experience designing Virtual Networking Solutions.
• 2-3 years of experience designing and deploying IPSec based Site to Site Connectivity solutions.
• Experience with configuring and running Tenable ACAS scans.
• Experience deploying and utilizing Microsoft Defender for Cloud, Microsoft Sentinel, Microsoft Security Center
• Knowledge of different deployment strategies (cloud, on-premise, hybrid).
• Understanding of Azure Virtual Networking (ExpressRoute).
• Experience configuring Azure Log Analytics, Azure Monitor and Alerts, Azure Policies, Azure Backup, Azure Key Vaults, Azure Virtual Machines.
• Experience with PowerShell / Azure CLI.
• Working knowledge of writing code is a plus.
• Working knowledge of Terraform or other Infrastructure as Code (IaC) is a plus.
• Experience with Agile environments is a plus. (Azure DevOps, GitLabs, Atlassian Toolset).
• Experience with FedRAMP Authorization processes is a plus.