Emory University is a leading research university that fosters excellence and attracts world-class talent to innovate today and prepare leaders for the future. We welcome candidates who can contribute to the diversity and excellence of our academic community.

The Senior Cloud Security Specialist (AWS) within Emory’s Enterprise Information Security team, will be primarily responsible for working with the Enterprise Security and other Emory IT teams to identify, evaluate, and implement security controls for cloud services. This will mainly include Amazon Web Services, but will encompass all future cloud related activities.

Familiarity with IT aspects of a healthcare environment would be preferred, but not required, such as: healthcare IT data transfer protocols, healthcare industry terminology, HIPAA regulations, medical device network and telemetry concepts, data encryption, security industry recommended best practices, and healthcare information security policies and laws.

JOB DESCRIPTION:

• Responsible for developing incident detection and response capabilities within cloud services, creating appropriate guardrails for users in the cloud environment to work within their space, and performing security reviews on systems being migrated to the cloud.
• Support Emory University’s migration of on-premise solutions to the cloud, and support Emory Healthcare’s adoption of cloud services.
• Assist with information security activities with university or healthcare units across the enterprise.
• Utilize technical and thought-leadership responsibilities for multiple information security disciplines such as incident response, vulnerability management, intrusion detection and prevention, threat hunting, security operations, security policy, and awareness/education.
• Oversees information security incident response activities, risk assessment and risk management activities, and vulnerability assessment and vulnerability management activities spanning University and Healthcare business units.
• Manages detailed network, operating system, database, and application vulnerability assessments and security configuration audits. Manages initiatives.
• Oversees operational tasks supporting information security functions such as intrusion detection and prevention, security event log analysis, management reporting, malware prevention and remediation, encryption, network segmentation, remote access, cloud security, and authentication.
• Drafts and reviews information security policies, processes, and procedures.
• Prepares information security awareness and education materials and other documentation.
• Determines and documents information security requirements and controls necessary for the protection of information resources.
• Provides guidance and assistance regarding information security matters such as the interpretation of information security policies and requirements or their applicability to particular situations.
• May independently develops automated tools and methodologies.
• Analyzes data from Information Security functions and provides reports and recommended response actions to Information Security management.
• Represents Information Security to other organizations on information security related matters, as assigned.
• Publishes regular status reports and submits to management.
• As a member of the Enterprise Security team, the position will also be tasked with other information security related tasks and projects as necessary.
• Performs related responsibilities as required.

Certifications that would be most appropriate for this position, but not required, are as follows:

• AWS Certified Solutions Architect / Professional
• AWS Certified Security - Specialty
• AWS Certified SysOps Administrator
• CISSP – Certified Information Systems Security Professional
• GCSA – GIAC Cloud Security Automation
• GCPN – GIAC Cloud Penetration Tester
• GPCS – GIAC Public Cloud Security
• GCIA – GIAC Certified Intrusion Analyst
• GCIH – GIAC Certified Incident Handler
• GCED – GIAC Certified Enterprise Defender
• GCFE – GIAC Certified Forensic Examiner
• GCFA – GIAC Certified Forensic Analyst
• GREM – GIAC Reverse Engineering Malware
• CHSE - Certified HIPAA Security Expert
• CHPSE - Certified HIPAA Privacy and Security Expert

MINIMUM QUALIFICATIONS:

• A bachelor's degree and five years of related IT experience including demonstrated technical expertise in multiple information security domains, or an equivalent combination of education, training and experience.
• Excellent team participation skills, as well as good written and verbal communication skills.
• Strongly preferred qualifications include knowledge of information security technologies, methodologies, and best practices in the domains of:
  • security incident response, vulnerability assessment and management, intrusion detection and prevention, system administration (Windows, OS X, Linux, etc.), security administration of networks, operating systems, databases and applications, access control, encryption, firewalls and proxies, networking, security event log analysis, malware prevention and remediation, cloud technologies, programming/scripting, and risk assessment and management.
• Security certifications are a plus (e.g. SANS/GIAC, CISSP, CISA, CISM).

PREFERRED QUALIFICATIONS:

• Significant experience with various SaaS, IaaS, and PaaS services, but especially Amazon Web Services (AWS).
• Significant experience designing, maintaining, and implementing security controls and technologies in cloud environments.
• Experience with AWS technologies such as, but not limited to: VPCs, Organizations, IAM, KMS, Security Groups, GuardDuty, CloudTrail, CloudWatch, Macie, Secrets Manager, Security Hub, Systems Manager, Inspector, Detective, Lambda, and Config (Rules and Compliance Packs).
• Experience and/or familiarity with concepts such as logging, SIEM, firewalls/WAFs, VPNs, subnets, ACLs/NACLs, penetration testing, encryption, automation, pipelines, code repos, and DevOps / DevSecOps.
• Experience with Windows and Linux systems.
• Familiarity with programming languages such as:  Python, Bash, PowerShell, Java, Go, Node.js
• Experience with IaC such as Terraform, CloudFormation.
• Experience conducting detailed application, system, and network vulnerability assessments and/or security configuration audits.
• Experience conducting incident response and/or forensic analysis activities.
• Experience with Microsoft Azure and/or Google Cloud Platform (GCP) is a plus.
• Ability to create comprehensive documentation.
• Ability to work with other teams to implement security goals.
• Customer service skills for both internal and external customers.

NOTE: This role will be granted the opportunity to work from home regularly but must be able to commute to Emory University location as needed.  Emory reserves the right to change this status with notice to employee.

The COVID-19 vaccine or an approved exemption is currently only required for individuals working in a clinical setting. For more information on the University or Hospital policies, including exemptions, please see our website.

Emory University is dedicated to providing equal opportunities and equal access to all individuals regardless of race, color, religion, ethnic or national origin, gender, genetic information, age, disability, sexual orientation, gender identity, gender expression, and veteran's status. Emory University does not discriminate in admissions, educational programs, or employment on the basis of any factor stated above or prohibited under applicable law. Students, faculty, and staff are assured of participation in University programs and in the use of facilities without such discrimination. Emory University complies with Executive Order 11246, as amended, Section 503 of the Rehabilitation Act of 1973, the Vietnam Era Veteran's Readjustment Assistance Act, and applicable executive orders, federal and state regulations regarding nondiscrimination, equal opportunity and affirmative action. Emory University is committed to achieving a diverse workforce through application of its affirmative action, equal opportunity and nondiscrimination policy in all aspects of employment including recruitment, hiring, promotions, transfers, discipline, terminations, wage and salary administration, benefits, and training. Inquiries regarding this policy should be directed to the Emory University Department of Equity and Inclusion, 201 Dowman Drive, Administration Building, Atlanta, GA 30322.

Emory University is committed to providing reasonable accommodations to qualified individuals with disabilities upon request. To request this document in an alternate format or to request a reasonable accommodation, please contact the Department of Accessibility Services at 404-727-9877 (V) | 404-712-2049 (TDD). Please note that one week advance notice is preferred.