Urgent Hiring || Sr DevSecOps/Cloud Security Engineer || Frisco, TX – Day 1 ONSITE

Max rate $60/hr on c2c.

Dear Vendors,

I hope this email finds you well.

Position: Sr DevSecOps/Cloud Security Engineer

Location: Frisco, TX – Day 1 ONSITE

Client: HCL

Duration: Long Term

Job description:

The Cloud security SME is responsible for support cloud security initiatives by enhancing IaC security processes and fine-tuning native firewalls (e.g., AWS Security Groups, Azure NSGs, GCP Firewall Rules) to align with best practices and compliance requirements

Key Responsibilities:

IaC Security Scanning & Hardening:
Integrate IaC security scanning tools (e.g., Checkov, TFSec, Snyk IaC, Terraform Validator) into CI/CD pipelines.
Analyze and remediate findings from IaC scans (Terraform, CloudFormation, ARM templates).
Develop custom policies for IaC scanning tools based on organizational security standards.

Firewall Implementation & Tuning:
Design and implement native firewall rules across cloud platforms (AWS, Azure, GCP).
Perform rule optimization, consolidation, and risk-based tuning to reduce attack surfaces.
Conduct regular reviews and audits of firewall configurations and access controls.

Risk Management & Compliance:
Align firewall and IaC security policies with industry standards (NIST, CIS, ISO 27001).
Support internal and external audits by providing documentation and evidence of controls.

Requirements:

·         7+ years of experience in cloud security, network security, or DevSecOps.

·         Hands-on experience with Terraform, CloudFormation, or other IaC tools.

·         Deep understanding of cloud-native firewall services (AWS, Azure, GCP).

·         Proficiency in security tools: Checkov, Prisma Cloud, Aqua, Snyk, etc.

·         Certifications preferred: AWS/Azure/GCP Security Specialty, CISSP, CCSP, Terraform Associate.

·         Proficiency in Automation by using Powershell, Bash and Python, etc.