Security Engineer III

Location: Bethesda, MD


Duties:
Contribute to Security Architecture that specifies how security controls will continue to be met.
Select, design and implement various container security integrity, scanning, monitoring and compliance tools to meet control requirements and integrate into the new CSS containers environment in AWS.
Assess and evaluate design changes needed to accommodate both EC2 and the new Container environment with CSS’s existing Vulnerability Management, Configuration Management, Security Logging, Identity Management (IAM) solutions, implementing new solutions as needed.
Select and Implement Vulnerability Scanning solution for Containers in AWS by conducting vendor assessment and a proof of concept (POC) to validate seamless integration of the selected tool in CSS environment.
Implement, Upgrade and maintain procured tools to ensure high availability and to meet security requirements.

Skills:
Experience in AWS - ECS(EC2), ECS (Fargate), Container architecture, EKS
Experience in AWS services like ECR, KMS, Secret Manager, API Gateway, S3
Credential Manager Experience is AWS EC2, and Lambda
Experience in CICD - Code pipeline, code build, and code deploy
Experience in creation of cloud formation templates
Experience in migrating non-containers workload to containerization
Experience in docker image build and deploy
Ability to utilize API’s and write code for integration, analysis etc
Hands on experience with container security tools such as Twistlock, Aquasec, Syndic, Tripwire, Tenable or similar tools.
Must possess excellent communication and writing skills
Comfortable working with a distributed team in a 100% virtual office environment
Familiarity with remote working tools such as MS Teams
Bachelor’s degree in Computer Science, Information Systems or related field

Experience:
6 to 8 years’ experience as a developer and with DevOps/AWS
3 to 4 years’ experience in containers security