Senior Cloud Security Engineer

Clean Harbors is a dynamic and innovative company leveraging cutting-edge technologies to drive business success. We are seeking a dynamic and experienced Cloud Security Engineer.  The cloud security engineer helps design, deploy, and operate a secure cloud infrastructure that aligns with business needs. The position is responsible for supporting operational innovation and providing security direction to elevate the company’s security posture within a cloud computing infrastructure. The cloud security engineer helps deliver infrastructure at scale and with resiliency to support business initiatives. The cloud security engineer is also expected to possess administrative and troubleshooting skills, and be knowledgeable about cloud architecture, engineering and design principles. 

Why work for Clean Harbors?

• Health and Safety is our #1 priority, and we live it 3-6-5!
• Competitive wages and robust career growth opportunities.
• Comprehensive health benefits coverage after 30 days of full-time employment.
• Group 401K with a company matching component.
• Generous paid time off, company-paid training, and tuition reimbursement.
• Positive and safe work environments, with sustainability as a core value. 

• Develop and maintain secure, resilient enterprise-grade cloud administration processes in tandem with architects and system engineers.
• Conduct rigorous oversight of security systems and security configuration administration to reduce risk to enterprise systems and accounts.  
• Deploy strong identity and access management (IDAM) and Privileged Access management (PAM) controls across computing environments.   
• Attend regular technical project and implementation meetings and serve as the security consultant to help guide secure application and infrastructure configurations.
• Actively monitor, assess and recommend tactical and strategic initiatives based on new and emerging threats posing risk to cloud computing environments.
• Manage remediation efforts after security assessment findings outline weaknesses requiring attention. 
• Document, formulate and enforce areas of security improvement that balance risk with business operations and do not diminish efficiencies or innovation.
• Assist in maintaining strong oversight with cloud computing vendors and solution providers to safeguard against undue risk presented by external entities. Escalate to security management and appropriate administration teams when points of weakness are discovered.
• Act as a key figure in incident response to track occurrence and resolution, with documentation and reporting as well as engagement with the security team.
• Attend and fully engage in change and project management meetings.

• 5+ years’ experience in cybersecurity as a practitioner and with at least 2+ years exposure to Microsoft Azure, Oracle Cloud Infrastructure, Amazon Web Services (AWS), and/or VMware.
• Holds or working toward one or more including: CCSP, CISSP, Azure, or Oracle cloud AWS Certified Cloud Practitioner or additional AWS advanced certifications such as AWS Certified DevOps Engineer, VMware Certified Professional  
• Expertise with Windows support and experienced in cloud networking architecture and cloud operations, with cloud access security broker (CASB) experience preferred.
• Network and encryption experience, including virtual private networks (VPNs), IPsec, SSL/TLS, LDAP and public key infrastructure (PKI).
• IDAM experience, including OAuth and OpenID.
• Experience with scripting languages such as PowerShell, JavaScript, and Python.
• Experienced in the use of threat intelligence services in a production environment.
• Up-to-date understanding of a wide-range of incident response, system configuration, vulnerability management and hardening guidelines. 
• Track record of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating effectively.
• Familiarity with tools such as Git, Jira, and Aha!
• Demonstrated problem-solving abilities to manage complex local and international security requirements.
• Self-motivated and -directed, well-organized and able to position controls in anticipation of threats. 
• The position requires lifting, pulling, pushing, or carrying up to 10 lbs.