Cloud Network Security Engineer
Job Reference: CWS-0404-479
Location: Luxembourg ( Onsite / Offsite )
Type: Full Time
Start date: ASAP
End date: Long term
Cloud Network Security Engineer
On behalf of my international client I’m seeking a Cloud Network Security Engineer for a long term contract assignment in Luxembourg. This is a hybrid role with onsite and offsite working.
Description for Cloud Network Security Engineer
- Configure and maintain advanced security devices such as firewalls, intrusion detection and prevention systems, and VPNs using technologies such as AWS Network Firewall and AWS Web Application Firewall (AWS WAF)
- Monitor network security and respond to security incidents with a strong understanding of security best practices and compliance standards
- Collaborate with cross-functional teams to troubleshoot and resolve complex security issues using tools such as AWS Config and AWS Security Hub
- Create and maintain detailed documentation of network architecture and security configuration
- Assist with the deployment and integration of new applications and services using deployment models such as AWS CloudFormation and StackSets
- Work closely with compliance teams to ensure network security and compliance with industry standards
- Migrate security policies defined on on-premise security devices to the cloud services such as AWS Network Firewall
- Familiarity with creating and using tools to automate the migration process as much as possible
- Implement and manage virtual private clouds (VPCs) and subnets with a focus on security using VPC NACLs and SGs
- Configure and maintain advanced security protocols such as HTTPS, SSH and SSL using technologies such as AWS Certificate Manager and AWS Key Management Service (AWS KMS)
- Set up and maintain advanced security devices such as firewalls, intrusion detection and prevention systems, and VPNs
- Monitor network security using advanced tools such as CloudWatch
- Collaborate with developers and operations teams to troubleshoot and resolve complex security-related issues using tools such as AWS X-Ray and AWS CloudTrail
- Perform regular security assessments and audits using tools such as AWS Trusted Advisor and AWS Inspector
- Assist with the migration of security policies from on-premise to the cloud, including the use of tools to automate the process
Requirements for Cloud Network Security Engineer
- Education : Bachelor’s degree in Computer Science or similar
- Experience: 5+ years of experience in network security engineering and administration
- Experience
- Expertise and knowledge in with expertise and knowledge in Security and Network solutions to be deployed on AWS (if possible also in Azure), mainly Firewalls and routing in TGW, but also Proxies, Load Balancers, etc.
- AWS Certified Advanced Networking Specialty or AWS Certified Security Specialty (similar level)
- Proficiency in at least one programming language such as Python, Java
- Strong understanding of ISO/OSI and TCP/IP models, protocols such as HTTP, DNS and VPN
- Experience with advanced security monitoring and troubleshooting tools such as CloudWatch and Wireshark but also tools leveraging Threat intelligence and the cloud
- Skills
- Expert knowledge of security best practices and compliance standards
- Experience with automation and configuration management tools such as Ansible and Terraform
- Ability to work effectively in a team environment and communicate complex technical concepts to non-technical stakeholders
- Experience with migrating security policies from on-premise to the cloud and the use of the tools to automate the process
- Fluent in both English/French, written and oral.