Center for Internet Security, Inc.

Cloud Cybersecurity Engineer and Community Liaison - Remote

Job Locations US
ID
2022-1538
Category
Software Development, Tools and Information Technology
Type
Regular Full-Time
Remote?
Yes

Overview

The Center for Internet Security (CIS) makes the connected world a safer place for people, businesses, and governments through our core competencies of collaboration and innovation. We are a community-driven nonprofit responsible for industry leading best practices for securing IT systems and data. We lead a global community of IT professionals to continuously evolve these standards and provide products and services to proactively safeguard against emerging threats.

 

CIS Benchmarks are computer system configuration guidance standards that are used world-wide to secure systems ranging from handheld devices to workstations to servers to network devices. The Benchmark Cybersecurity Engineer and Community Lead (BCE-CL) leads the public Technology Communities under their care and orchestrates the development of community driven Benchmark documents, Automated Assessment Content (AAC), and Build Kits to promote the CIS mission and help support our growth. BCE-CL will also assist in mentoring other BMDT personnel in process improvement and standardization.

 

The BCE-CL should have familiarity with a variety of common technologies, be a knowledgeable generalist in Cybersecurity issues, skilled in leading teams, and passionate about our vision (Leading the global community to secure our connected world).

What You'll Do

  • Lead multiple public consensus teams identifying, defining and documenting configuration security requirements for key services on various public cloud platforms (security relevant configuration settings). Specifics will vary per platform, but classes of services may include:
    • Storage
    • Key Management
    • Database
    • Compute
    • Serverless
  • Use CIS tools to develop, test and deliver Benchmark prose, Automated Assessment Content and Build Kits
    • Coordinate internal/external resources, but also directly contribute as able to achieve deliveries (based on technical expertise)
    • Develop test plans for Benchmark recommendations, AAC, and Build Kits
    • Coordinate testing internally/externally and validate results
  • Mentor and coach junior team members in a technical capacity
  • Other tasks and responsibilities as assigned

What You'll Need

  • Bachelor's degree in a related field*
  • 2+ years of hands on experience managing/administering/configuring public cloud systems (AWS, GCP, Azure, etc.) and supported services.
  • 2+ years of team leadership experience including project management, coaching and mentoring
  • 2+ years of experience in the practical application of Cybersecurity concepts and issues including implementing and/or assessing network, application and/or operating system security controls
  • Experience working in a diverse geographically distributed community (Open Source software development, Standards development, etc.)
  • Experience implementing standardized configuration security guidance (CIS Benchmarks, DISA STIGs, Vendor guidance, etc.)
  • Experience with testing of software and/or system security configurations
  • Must be authorized to work in the United States
  • Full COVID-19 vaccination may be required.

It's a Plus if You Have:

  • (ISC)2 CISSP certification
  • PMI PMP certification
  • Experience developing and enforcing security policy across an enterprise (PCI, HIPAA, NIST CSF, etc.)
  • Experience within the security automation domain, including expertise in Security Content Automation Protocol (SCAP) related schemas, such as Open Vulnerability and Assessment Language (OVAL), Extensible Configuration Checklist Description Format (XCCDF), Common Configuration Enumeration (CCE) and Common Platform Enumeration (CPE), etc.
  • Proficiency using Atlassian products Jira and Confluence.
  • Experience with Agile processes

*Additional years of relevant experience or a combination of an Associate’s degree or equivalent and relevant experience may be substituted for the Bachelor’s degree.

 

At CIS, we are committed to providing an inclusive environment in which the diverse backgrounds, experiences, and views of our employees, members, and customers are valued and respected. It is through this commitment that we are able to work together towards our common mission: to make the connected world a safer place.

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed