Information Security Consultant managing security standards implementation at LUZA Group in Lisbon, Portugal. Handling analysis of risk and supporting audits while working in a hybrid model.
About the role
- Security Engineer supporting civilian federal agency to implement cloud security controls and identity management solutions. Collaborating with IT and application teams to ensure compliance and security standards.
Responsibilities
- Implement, and operate ICAM solutions, including identity lifecycle management, authentication, authorization, and access governance.
- Implement Zero Trust Architecture in alignment with NIST SP 800-207, emphasizing continuous verification, least privilege, and identity-based access.
- Deploy and support SASE / SSE capabilities, including ZTNA, Secure Web Gateway, CASB, and Firewall-as-a-Service.
- Support PIV smart card and certificate-based authentication across users, device, application, and cloud environments.
- Operate, and maintain PKI and certificate management services, including certificate issuance, renewal, revocation, and automation.
- Engineer and secure cloud environments (AWS, Azure, or GCP), focusing on identity, networking, logging, and secure configurations.
- Perform vulnerability scanning, risk prioritization, and coordination of remediation activities.
- Support patch management efforts by validating system configurations and verifying remediation of security findings.
- Monitor security and identity events using SIEM and related tools; investigate and respond to security incidents.
- Participate in incident response activities, including alert triage, investigation, containment, eradication, and recovery.
- Develop and maintain incident response playbooks, runbooks, and post-incident documentation.
- Develop and maintain security engineering documentation, standards, and operational runbooks.
- Collaborate with IT, cloud, and application teams to integrate security controls into system designs and CICD pipelines.
- Provide compliance and audit support, including technical evidence for ATO, continuous monitoring, and remediation activities.
Requirements
- Proven experience in identifying and remediating vulnerabilities in both Linux and Windows environments with a strong understanding of compliance requirements.
- Strong understanding of cloud security frameworks and best practices, including NIST, CIS, and ISO 27001.
- Proficiency in using security tools such as Nessus, ORCA, AWS Security Hub, Azure Security Center, Google Cloud Security Command Center, and other vulnerability scanning tools.
- Familiarity with Red Hat Satellite server, WSUS, IBM BigFix or other similar toolsets.
- Knowledge of scripting languages such as Python, Bash, PowerShell, Ansible for automation of security remediation tasks.
- Excellent problem-solving skills and the ability to work under pressure in a fast-paced environment.
- Strong communication and interpersonal skills, with the ability to explain complex security issues to technical and non-technical stakeholders.
- Experience with IAM / ICAM platforms, identity federation (SAML, OAuth 2.0, OpenID Connect), and privileged access management.
- Hands-on experience implementing Zero Trust and/or SASE/SSE solutions.
- Strong knowledge of PIV/CAC, MFA, and certificate-based authentication.
- Practical experience with PKI, X.509 certificates, CRLs/OCSP, TLS, and key management.
- Experience securing cloud environments and integrating identity-centric controls.
- Knowledge of vulnerability management and patch management processes and tools.
- Familiarity with NIST SP 800-53, 800-63, and 800-207, and FISMA requirements.
- Ability to automate security and certificate lifecycle tasks using scripting tools.
- Strong written and verbal communication skills.
- Desire to work in a SAFe environment to support efficient delivery.
Benefits
- full benefits
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Senior Cybersecurity Analyst at Boeing performing advanced cybersecurity assessments and risk evaluations for third - party vendors. Focusing on automation, lean processes, and collaborating with key stakeholders across departments.
Cybersecurity Manager ensuring regulatory compliance in information security within the Mexican framework. Collaborating with technology teams to strengthen governance, risk, and control model.
CISA Auditor focusing on cloud security audits for a Zurich - based international bank. Ensuring cybersecurity and identifying vulnerabilities in IT systems with risk - oriented audits.
Cybersecurity Specialist managing compliance for DoD security transition to Zero Trust Architecture. Involves overseeing RMF activities and ensuring ATO deadlines are met in cloud environments.
Engineer II responsible for managing enterprise customer support in Security Engineering. Focused on troubleshooting and diagnosing security incidents in a hybrid work environment.
Guest Safety Agent at HRI Hospitality ensuring safety and hospitality for guests and managing outlet spaces. Maintaining a secure environment while engaging with guests and visitors in New Orleans.
Cybersecurity Architect for Saint Louis University developing and assessing security strategies and architecture. Ensuring secure IT services through effective security technologies and practices.
Senior Commercial Manager developing and executing Cyber Security strategies, managing client portfolios and leading complex negotiations in São Paulo.
Security Officer responsible for maintaining safety at WarHorse Casino. Enforcing policies, responding to incidents, and providing customer service to guests.