Cloud Security Engineer

Cloud Security Engineer
Remote, USA OneStream Software LLC

Benefits Offered Vision, Medical, Life, Dental, 401K

Employment Type Full-Time

Compensation $90,000.00 - $120,000.00 (Range applies to US candidates only) + Benefits/Variable Comp./Equity - Range may vary based on experience.

ABOUT THE JOB

We are looking for a Cloud Security Engineer to join our Information Security team. This position is vital to OneStream’s Cloud Security strategy with a focus on Microsoft Azure and 365. Responsibilities include developing and enhancing our SIEM for threat detection and response, identifying and implementing appropriate security measures across our cloud infrastructure and services, and helping to continuously elevate our security posture to keep our information and the information of our customers secure.

The ideal candidate for this position will be someone with firsthand experience securing Microsoft Azure infrastructure and cloud services according to industry best practices, a working knowledge of Kusto Query Language (KQL) and Microsoft Sentinel, familiarity with hardening standards such as CIS Benchmarks and DISA STIG, and a passion for Cloud Security. Candidates must be able to explain and discuss technical details with both technical and non-technical audiences. Candidates must also work well in a small team and be willing to share responsibilities with other team members as needed.

RESPONSIBILITIES

Primary Responsibilities:

• Design, configure, and continuously improve security across our Azure and Microsoft 365 landscape.
• Configure and manage Microsoft Defender for Cloud protections.
• Develop Azure Log Analytics Kusto Query Language (KQL) queries for monitoring and alerting.
• Enhance MS Sentinel SIEM to facilitate threat hunting and detection of suspicious and anomalous behavior.
• Implement and maintain system & application hardening, such as CIS Benchmarks and DISA STIG.
• Regularly audit environments to validate secure configuration of resources, services and applications.
• Work with other members of the Security team to review vulnerability scans and identify remediations.
• Collaborate with Internal and Cloud teams to ensure secure configuration of infrastructure and services.
• Support Risk/Compliance team with audit needs and validating adherence to control frameworks.
• Create and update technical documentation, policies and procedures.

QUALITIES OF A SUCCESSFUL CANDIDATE

Formal Education and Certification

• BS/BA in Computer Science, Engineering, or technology-related field (or equivalent work experience).

Knowledge and Experience

• 3+ years of experience securing cloud-based infrastructure, services and technologies.
• Solid understanding of Cloud Security concepts including secure design & configuration, principle of least-privilege, data protection and detection & response to threats & indicators of compromise (IoC).
• Hands on experience developing and utilizing a Security Information & Event Management (SIEM) tool, such as MS Sentinel.
• Working knowledge of Azure Log Analytics and Kusto Query Language (KQL).
• Experience applying hardening standards such as CIS Benchmarks or DISA STIG.
• Experience with vulnerability scanning and remediation.
• Strong understanding of Windows and Linux Operating Systems.
• Familiarity with PowerShell, Bash, and REST APIs.
• Familiarity with incident and change management.

Nice to Have

• Experience working for a Cloud Service Provider (CSP), Managed Service Provider (MSP) or SaaS Provider.
• 3+ years of experience working extensively in Microsoft Azure, Amazon Web Services (AWS) or Google Cloud Platform (GCP).
• Understanding of compliance frameworks and security controls (NIST, FedRAMP, SOC, ISO, PCI-DSS, HIPAA).
• Working knowledge of network security, TCP/IP, TLS, and firewall configuration.
• Understanding of identity management systems and protocols (Entra ID, Okta, OIDC, SAML, OAuth).
• Familiarity with Bicep, Terraform, Ansible, Azure DevOps, Git.
• Understanding of Agile, Scrum, DevSecOps concepts.
• Understanding of Azure Kubernetes Services (AKS) and container security.
• Any certifications such as Microsoft Certified: Azure Security Engineer Associate (AZ-500), Azure Administrator Associate (AZ-104), Security Operations Analyst Associate (SC-200), CompTIA Security+.

Personal Attributes

• Deal well with ambiguous/undefined problems ability to think abstractly.
• Affinity for customer service.
• Strong problem-solving skills.
• Ability to multitask a variety of projects.
• Passion for technology and learning.
• Self-motivated, self-starter.
• Ethical.
• Professional.
• Team player.
• Excellent written, verbal, and interpersonal skills.
• Experience with OneStream Software not required.
• Legally authorized to work for any company in the United States without sponsorship.

WHO WE ARE

OneStream is how today’s Finance teams can go beyond just reporting on the past and Take Finance Further™ by steering the business to the future. It’s the only enterprise finance platform that unifies financial and operational data, embeds AI for better decisions and productivity, and empowers the CFO to become a critical driver of business strategy and execution. Our vision is to be the operating system for modern finance, digitizing core financial functions and empowering the CFO to become a critical driver of business strategy. To learn more visit www.onestream.com.

WHY JOIN THE ONESTREAM TEAM

• Transparency around corporate structure, salary, and benefits
• Core value of customer success
• Variety of project work (not industry specific)
• Strong culture and camaraderie
• Multiple training opportunities
  
  

Benefits at OneStream SoftwareOneStream employees are passionate, hardworking individuals who go above and beyond to keep our customers happy and follow through on our mission statement. They consistently deliver the best and in turn, we make every effort to keep them cared for and happy. A sample of the benefits we provide are:

• Excellent Medical Plan
• Dental & Vision Insurance
• Life Insurance
• Short & Long Term Disability
• Vacation Time
• Paid Holidays
• Professional Development
• Retirement Plan

OneStream is an Equal Opportunity Employer.