Cloud Security Engineer

Arganteal seeks a Dev/Sec/Ops SME with hands on Terraform scripting & Sentinel policy authoring experience. Consultant should have multi project proven hands-on Experience reviewing and authoring custom Sentinel Policies & Terraform templates/providers/plug-ins as part of a team that supports DevOps, and Site Reliability Engineering & Operations. 

Location: Remote Work From Home

Duration:  12 Months @ 40 Hour Per Week

Hourly Rate:  $110.00 per hour on 1099 or Corp2Corp (No W2)

Visa Status:  H1b acceptable

Requirements:

1. Must live in the United States or Canada
2. Must be available for Full Time remote work... Video Meetings Required

Job Description:

We are looking for a level Dev/Sec/Ops Engineer who can help mature the IaC & PaC domains by building a highly automated hybrid cloud infrastructure provisioning and policy compliance & enforcement services by leveraging Hashi Corp’s tools/technologies & best practices to facilitate Automated, Secure, Single click deployments of AWS, Azure & GCP Hybrid Infrastructures and Secure configurations that are compliant and map to internal policy guidelines. 

This role requires the individual to be very hands-on and should be able to install, setup & configure DevOps pipelines and security scanning services as per industry best practices and develop Policy-as-Code strategy, best practices and the associated modules to line up with industry benchmarks to ensure compliance to internal policy. This role will also require that the individual be familiar with current and emerging cloud technologies and tools. 

Required Skills

• Software Engineering background is preferred
• Experience writing custom Sentinel Policies & Terraform templates/providers/plug-ins
• Experience with CI/CD pipelines - ADO, GitLab, Jenkins etc and respective integration(s) to infrastructure would be a plus
• Familiarity with Cloud Security benchmarks including CIS and Infosec
• Familiarity with NIST 800-53 security controls baseline 
  Certification(s) would be a plus: Terraform Associate Certification, Amazon Cloud Solutions Architect, Amazon Cloud Security
• 5 years strong working knowledge and understanding of AWS core concepts including Accounts, VPCs, Subnets, Security Groups, NAT Gateways, ALBs, Serverless Technologies etc.
• Strong Development experience using Python, YAML, JASON, TF & Sentinel scripting 
• Must have experience with Sentinel Policy as Code 
• Experience with Hashicorp Configuration Language (HCL) for module & policy development 
• Hands-on Experience setting/supporting enterprise DSO technologies/tools like Checkmarx to enable SAST, DAST, SCA & IAC scanning of application and infrastructure environments
• Application security testing tool orchestration experience with ADO, Jenkins, Git, Security scanning services
• 2 or more years working experience with authoring and reviewing Terraform templates, Sentinel Policy 
• 4 or more years of experience with Cloud based DevOps practices, specially highly hands on experience with Terraform, Sentinel PaC 
• Good understanding of AWS, Azure & GCP Core services 
• Understanding of information security compliance, governance, scanning and monitoring tools is highly desired.