[Close] 

Cloud Security Remediation Developer

What you ll be doing...

As a Cloud Security Remediation Developer you will be responsible for the development of tooling for automation and reporting against the overall security remediation plan for the Verizon Cloud Platform (VCP) infrastructure, reducing the platforms threat surface and remediating known vulnerabilities as they are encountered.

The successful candidate will have strong scripting and programming skillsets which will be necessary to develop applications and code that can interact directly with OpenStack and other internal metering, monitoring, alarming platforms at the API level.

The position will be responsible for closely monitoring security advancements in the OpenStack development community, the Cloud security community and ensuring that any enhancements to cloud security and security best practices are applied to our deployments. You will also be responsible for creating auditing and reporting mechanisms that will fit into the existing VCP monitoring and alarming regimens so that the team can track remediation efforts and compliance over time, and take corrective action when systems fall out of compliance. The position requires a high degree of collaboration with all Verizon Business units and security initiatives and will advise on troubleshooting and the triage of security related problem reports, resolutions, and escalate as required.

Verizon is looking for out-of-the-box thinkers to help us build and manage the Verizon Cloud Platform (VCP). People who are hard-working and really want to help transform the way we do operations. What we do really matters to the business. This is a great opportunity for you to bring your technical leadership, skills and experience to life as part of a small team within a large organization. We operate with a lean startup mentality with the support of a large directional division. You will have the experience and expertise of the best network team in the world behind you as you help the team transform infrastructure, workload, and product through content delivery, mobility, and Verizon's enabling of the Internet of Things.

Software Development:

  • Development of tooling and processes to ensure that security remediation solutions are deployed uniformly across all VCP locations around the globe and track audit results and compliance down to the node level.

Platform Auditing and Compliance:

  • Through the use of several industry accepted security frameworks, routinely audit the VCP infrastructure, measuring compliance with these standards and develop code to remediate any findings that fall outside of acceptable boundaries

Verizon Cloud Platform & Infrastructure Security:

  • OS, Stack, and node level firewall management/hardening, threat identification/remediation, configuration management, filesystem and data integrity monitoring, penetration testing, and regulatory compliance

What we re looking for...

You ll need to have:

  • Bachelor s degree or four or more years of work experience.

  • Six or more years of relevant work experience.

Even better if you have:

  • A degree.

  • Strong software development experience.

  • Strong scripting skills (e. g. Python, Bash/Shell, Javascript, other).

  • Experience developing and working in a virtualized environment (particularly OpenStack).

  • Relational database design and optimization with MySQL, PostgreSQL.

  • Understanding of microservices architecture design and implementation.

  • Strong experience with RESTful services and APIs.

  • Demonstrable experience with CI/CD e. g. Screwdriver, CircleCI, Jenkins.

  • Experience working modern configuration management tools (Puppet, Ansible, Chef).

  • Knowledge of IP networking, VPN's, DNS, load balancing, firewalls, SSL termination devices.

  • Strong communication skills (written, verbal, presentation).

  • Experience building and troubleshooting OpenStack.

  • Security background with a focus in OS level system hardening techniques and compliance with industry approved frameworks (NIST, STIG, CIS, PCI-DSS, FISMA).

  • Experience working with common pen test tools such as Nmap, Nessus, OpenVAS, Wireshark, Metasploit, etc.

  • CISSP, CEH or other similar security certifications.

  • Firm understanding of the concepts behind Software Defined Networking (SDN) and Network Function Virtualization (NFV).



Don't Be Fooled

The fraudster will send a check to the victim who has accepted a job. The check can be for multiple reasons such as signing bonus, supplies, etc. The victim will be instructed to deposit the check and use the money for any of these reasons and then instructed to send the remaining funds to the fraudster. The check will bounce and the victim is left responsible.

More Jobs

Site Installation Technician- Fire Security In...
Florham Park, NJ Siemens
Site Installation Technician- Fire/Security - ...
Florham Park, NJ Siemens
DevOps/Security Ops Engineer
Warren, NJ EXPERIS
Junior Security Administrator, (PSS3)-AFT-Exte...
Glassboro, NJ Rowan University
IM Telematics Data Integration Developer II
Mount Laurel, NJ Holman Automotive
Hourly Security Personnel - ESS/MissionOne
Mount Holly, NJ Burlington County Institute of Technology