Skip to content

Cloud Security Engineer

Requisition Number:

23448

Location:

Boulder, Colorado

Employment Type:

University Staff

Schedule:

Full-Time

Posting Close Date:

27-Jan-2020

Date published:

07-Jan-2020

Job Summary

The Security Operations team within the Office of Information Security encourages applications for a Cloud Security Engineer who can play a key role in helping the team update security practices to better support growing use of public cloud services at CU. This position is part of the Security Operations team within the Office of Information Security, a team that serves both the Boulder campus and the System Administration division of the University of Colorado. The position is focused on two core duties: developing operational security practices within public cloud platforms and providing security guidance for IT teams as they move into public cloud platforms. The position’s initial focus is heavily on Amazon Web Services (AWS), but will include Google Cloud Platform and Microsoft Azure to a lesser degree. The position needs both a solid skillset in public cloud security as well as collaboration both within the security team as well as with other IT teams and departments. 

The Cloud Security Engineer reports to the Director for Security Operations. This position is available as a full-time or part-time appointment with a minimum of a 75% time work schedule.

Who We Are

The Chief Information Security Officer and the campus Information Security Officers jointly oversee the University of Colorado’s efforts to protect its computing and information assets and to comply with information-related privacy and security laws and regulations. 

The System Administration division of the University of Colorado provides several shared services (employee services, procurement services, financial services, legal counsel, enterprise resource planning systems, etc.) to the multi-campus University of Colorado system, serving tens of thousands of users. The Office of Information Security both manages operational information security for this division, as well as providing some information security services to the broader multi-campus system.

What Your Key Responsibilities Will Be

Cloud Security Operations
  • Lead the process of collaborating within the security team and with other IT teams to establish new processes and tools for managing security operations in AWS.
  • Work with other security functional leads (vulnerability management, incident response, monitoring, etc.) to update their processes to support public cloud usage.
  • Ongoing management of cloud-specific security toolsets and processes.
Cloud Security Guidance
  • Develop patterns (technical templates, documentation, etc.) for secure implementation of public cloud services in a highly distributed IT environment. 
  • Assist departments in securing their public cloud accounts.
Professional Development 
  • Maintains awareness and knowledge of information security threats, vulnerabilities, technologies, and business processes. 
  • Continuously learns new professional and technical skills and abilities through formal and informal learning opportunities.

What You Should Know

This position is available as a full-time or part-time appointment with a minimum of 75% time work schedule and the option to work either in Denver or in Boulder. 

What We Can Offer

We can offer a competitive market-based salary, commensurate with experience.

Benefits

The University of Colorado offers excellent benefits, including medical, dental, retirement, paid time off, tuition benefit and ECO Pass. The University of Colorado Boulder is one of the largest employers in Boulder County and offers an inspiring higher education environment. Learn more about the University of Colorado Boulder.

Be Statements

Be Driven. Be Flexible. Be Boulder.

What We Require

  • Four (4) years of experience in information technology or a Bachelor’s degree.
  • Three (3) years of additional experience managing security in public cloud IaaS services (AWS, GCP, Azure).

What You Will Need

  • Knowledge of cybersecurity and privacy principles, computer networking fundamentals, and public cloud concepts and designs
  • Skill in designing security controls based on risks, evaluating the adequacy of security designs, and applying security controls
  • Ability to communicate complex information in a well-organized manner through verbal, written or visual means
  • Ability to optimally collaborate with team members in-person and remotely
  • Ability to think analytically and critically

What We Would Like You To Have

  • Experience developing security approaches for multi-account AWS implementations (e.g. AWS Landing Zone and AWS Control Tower)
  • Experience deploying native AWS security services (GuardDuty, SecurityHub, CloudWatch, Macie, etc.)
  • Experience developing and documenting processes
  • Experience collaborating with multiple departments
  • Experience working in DevOps environments and supporting security in CI/CD pipelines.
  • Formal AWS training and/or certifications (like Amazon Certified Security Speciality)
  • Experience with Google Cloud Platform
  • Experience with Microsoft Azure

Special Instructions

To apply, please submit the following materials: 
1. A current resume. 
2. A cover letter that specifically addresses how your background and experience align with the requirements, qualifications, and responsibilities of the position.

You will not be asked to upload references at this time.

Please apply by January 27, 2020, for consideration.

Note: Application materials will not be accepted via email. For consideration, applications must be submitted through CU Boulder Jobs.

Posting Contact Information

Posting Contact Name: Boulder Campus Human Resources

Posting Contact Email: Recruiting@colorado.edu

The University of Colorado Boulder is committed to building a culturally diverse community of faculty, staff, and students dedicated to contributing to an inclusive campus environment. We are an Equal Opportunity employer, including veterans and individuals with disabilities.