Unix/Linux Hybrid Cloud Security Engineer

Job Description

* UNIX/Linux Hybrid Cloud Security Engineer is responsible for designing, implementing, and maintaining security controls and solutions across on-premises and cloud environments within the organization’s hybrid cloud infrastructure.
* This role plays a crucial part in ensuring the confidentiality, integrity, and availability of critical financial data and systems while adhering to industry regulations and best practices.

Key Responsibilities:
* Access and Authentication Management:
• Design and implement robust access control mechanisms, including centralized authentication systems (e.g., LDAP. Kerberos, RADIUS) and multi-factor authentication solutions.

* Security Architecture and Design:
• Collaborate with cross-functional teams to design and implement secure architectures for UNIX/Linux systems, containerized environments, and cloud services (e.g., AWS, Azure, GCP).

* Secure Configuration and Hardening:
• Develop and maintain secure configuration baselines for Unix/inux systems, following industry best practices and regulatory compliance requirements.

* Hybrid Cloud Security:
• Design and implement secure architectures for Unix/Linux workloads in hybrid cloud environments, considering factors such as network segmentation, data encryption, and access controls.
• Collaborate with cloud service providers to ensure compliance with their security standards and best practicas.
• Develop and maintain secure automation scripts and tools for provisioning, configuring, and managing Unix/Linux systems in the cloud.

* Incident Response and Forensics:
• Participate in incident response procedures, conducting investigations and performing root cause analysis for security incidents involving Unix /Linux systems.
Security Operations and Hardening:
• Implement and maintain security controls, including firewalls, intrusion detection/prevention systems, and security information and event management (SIEM) solutions.
• Leverage Infrastructure-as-code (laC) principles to codify and automate recure infrastructure deployment
Implement continuous integration and continuous deployment (CI/CD) pipelines with embedded security controls.

* Processes, Procedures, and Documentation:
• Develop and maintain comprehensive security policies, procedures, and technical documentation for hybrid cloud environments.
• Establish and enforce secure coding practices, code review processes, and secure software development life cycle (SDLC) methodologies.

* Knowledge Transfer and Mentoring:
• Provide subject matter expertise and guidance to cross-functional teams on security best practices and emerging threats.
• Participate in security awareness and training programs for Unix/Linux administrators and developers
• Mentor and support junior security engineers, fostering knowledge sharing and professional development.
• Collaborate with vendors, partners, and the broader security community to stay abreast of industry trends and emerging technologies.
• Continuously research and evaluate new security technologies and methodologies to enhance the organization’s security posture.

Qualifications and Requirements:
* Bachelor’s degree in Computer Science, Information Security, or a related field, or equivalent experience.
* Minimum of 7-10 years of experience in UNIX/Linux system administration and security roles.
* Extensive knowledge of security principles, techniques, and best practices for on-premises and cloud environments.
* Hands-on experience with security tools and technologies, such as firewalls, IDS/IPS, SIEM, vulnerability scanners, and secure coding practices.
* Proficiency in scripting languages (e.g., Python, Bash, PowerShell) and infrastructure-as-code tools (e.g.. Terraform, Ansible, Puppet).
* Strong understanding of industry regulations and compliance requirements (e.g.. PCI-DSS, SOX, GDPR).
* Excellent communication and documentation skills for technical and non-technical audiences.
* Ability to work in a fast-paced, dynamic environment and handle multiple priorities effectively.
* Certifications such as CISSP, GIAC, or vendor-specific security certifications are highly desirable.
* This role requires a combination of technical expertise, strategic thinking, and strong communication skills to ensure the organization’s hybrid cloud infrastructure remains secure while enabling business growth and innovation.