Recommending security configuration standards for cloud services to include, but not limited to,
AWS, AZURE, Google.
Conducts security risk assessments, evaluates security services and technologies, and reviews
and documents information security policies and procedures as well as provides monitoring and
oversight for alerts in the Cloud environment.
Integrate Cloud logs with Vivint SIEM as needed for logging and monitoring of Vivints Cloud
environments using Splunk
Work with IT to review and assess cloud network, server and service architecture
Produce metrics and reports on the cloud security posture of Vivint cloud systems
Create actionable alerts in Splunk based on received Cloud log events
Monitor and respond to security events and incidents
Coordinate with SOC team on all security events and incidents
Design and perform POCs and to facilitate service selection
Plan, implement and direct Cloud related SOC Infrastructure and security projects
Act as L2/L3 Cloud support for Security Analysts
Train SOC analysts on Cloud security and Cloud processes
Knowledge of PCI, PII requirements
Validate that system designs meet compliance requirements
Create and work on Jira tickets as needed to perform work and projects
Perform SOC Daily tasks, to include monitoring and responding to alerts, remediating of
Develop and write SOPs
Acts as an Incident Response team member when the incident response team is active. Incident
response tasks may be identification, log and event collection and analysis, forensic
investigation support, communication support, and evidence handling.
Assist in performing IT audits, security reviews, risk assessments Change Management reviews
for SOX, PCI, HIPAA, IT control mapping, process documentation, control testing, deficiency remediation, gap analysis/assessments, and IT audit preparation.
*This is not a complete list of the functions and responsibilities and may be adjusted as required.
• Automate security controls, data and processes to provide better metrics and operational support
Job Skill Requirements:
A successful candidate will have a broad range of experience in hardware and software technologies that can work in a fast-paced environment:
2+ years experience in IT Security
2+ years experience working in one or more of the following Cloud systems
• AWS, AZURE, or Google
Deep understanding of IT infrastructure, information security, and compliance controls.
Hands-on experience endpoint security operations required.
Hands-on experience with network vulnerability and web application scanning tools
Excellent written and verbal communication skills: Must be able to write document, articulate
and present complex security concepts and solutions to parties with a variety of skills.
Exceptional analytical and problem solving skills; someone who ‘sees’ the box differently.
Experience developing and managing remediation plans/corrective actions.
Must have experience with SIEM technologies.
One or more of the following:
AWS Security, AWS Cloud Practitioner,
Exam AZ-500 MS Azure Security Technologies
Exam AI-900 MS Azure AI Fundamentals
Comparable or greater Cloud experience or certifications
Minimum of 2 years related work experience in IT Security.