CLOUD SECURITY ENGINEER

Job Number: R10002915
Brand: National Geographic
Job Type: Engineering
Location: Washington, District of Columbia, United States of America
Job Posting Date: May 31, 2018

OVERVIEW OF THE COMPANY

National Geographic

The National Geographic Channels form the television and production arm of National Geographic Partners, a joint venture between 21st Century Fox and the National Geographic Society. As a global leader in premium science, adventure and exploration programming, the Channels include: National Geographic Channel (NGC), Nat Geo WILD, Nat Geo People and Nat Geo MUNDO. Additionally, the Channels also run the in-house television production unit, National Geographic Studios. The Channels contribute to the National Geographic Society’s commitment to exploration, conservation and education with entertaining, innovative programming from A-level talent around the world, and with profits that help support the society’s mission. Globally, NGC is available in more than 440 million homes in 171 countries and 45 languages, and Nat Geo WILD is available in 131 countries and 38 languages. National Geographic Partners is also a leader in social media, with a fan base of 250 million people across all of its social pages. NGC contributes over 55 million social media fans globally on Facebook alone.

JOB DESCRIPTION

The National Geographic Technology team is seeking a Cloud Security Engineer to help secure our Content and Web/Front-end Platforms. At National Geographic, we heavily depend on various Content Platforms and reusable Web Tools that power several owned and operated, as well as vendor managed US and Global digital properties. For an example of our work take a look at https://www.nationalgeographic.com and https://www.nationalgeographic.es/.

You will be part of a lean high performing team supporting a top global brand with an amazing mission. You will be responsible for NGP’s Cloud Security Operations as part of the Product and Technology Cloud Operations team. You will support cloud security operations for all NGP Digital business. You will work closely with individuals within Product, Technology, Cloud Operations and Security teams and with 3rd party vendors, contractors and partners. You will join us in our DC office.

Responsibilities:

• Perform day-to-day cloud security operations to maintain an acceptable security posture of cloud systems. These activities may include and not be limited to:
  • Cloud system (AMIs, Workspaces, EC2, etc) security configuration baseline, patch management, virus management.
  • Configure, tune and operate cloud-based security tools such as AWS config, cloud trail, guard duty, etc.
  • Implement solutions to meet cloud security control requirements.
  • Respond to security tickets to resolve security risks and improve security posture.
  • Implement data and content protection controls such as database encryption and key issuance and revocation.
  • Maintain and troubleshoot information cloud security operations tools and systems to include virtual firewalls, IPS, vulnerability scan agents, host-based threat detection agents, etc.

• Support critical log management functions such as configuration of system, application and infrastructure log collection and aggregation to align with logging guidelines
• Support, investigate, triage and respond to information security events from detection to remediation in accordance with IR procedures
• Recognize attacker tools, tactics, and procedures to produce indicators of compromise (IOCs) that can be utilized during active and future investigations
• Maintain current knowledge of vulnerabilities related to AWS infrastructure, systems and deployed applications/capabilities to prioritize, champion and action on vulnerability remediation.
• Communicate complicated technical issues, threats, vulnerabilities and risks to engineers, network engineers, system administrators, and management; provide guidance on remediation requirements and expectations
• Promote a functionally secure environment by understanding operational needs and security requirements to support technically feasible

Qualifications:

• 5+ years relevant professional Information Security experience.
• 3+ years releveant hands-on Cloud Security experience, specifically AWS, AWS native tools and common third party cloud enabling platforms.
• Masters and/or Bachelors in IT, Computer Science or Information Security preferred.
• CCSA, CISSP, Cyber Security Analyst or similar certificate preferred.
• Excellent written and verbal communication. Demonstrated ability to communicate effectively with all stakeholders to include senior executives, business leaders, system engineers and end users.
• Demonstrated ability to remain calm, thoughtful and purposeful under stress
• An adaptive, influential style to most effectively achieve the desired outcome.
• A foundational belief that security is a core business enabler.
• Advanced experience with tools such as cloud formation, terraform, puppet, ansible
• Advanced experience with Threat/Vulnerability technologies solutions (FireEye, CrowdStrike, Qualys, Sophos, Tanium, CarbonBlack, etc)
• Proficiency in at least one scripting language (Bash, Perl, Python, Powershell, etc.) a plus
• Strong Windows or Linux system administration
• Knowledge of encryption technologies (PGP, SSH, SSL, etc.)
• Advanced knowledge/experience with advanced malware detection systems and other cloud cyber security platforms
• Solid understanding of AWS cloud security features, tools and operations.
• 5+ years primarily focused on security administration, vulnerability prevention and security control implementation
• Direct or indirect support of security programs for consumer facing digital products.
• A solid track record building relationships with product leads and technologists.

We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, gender identity, disability, protected veteran status, or any other characteristic protected by law. We will consider for employment qualified applicants with criminal histories consistent with applicable law.