Information Security Cloud Engineer


Cloud Security Administrator/Engineer

About the Opportunity:

Epsilon is looking for a Cloud Security Administrator/Engineer to join our Information Security Operations, Engineering team. At Epsilon, we work in a fast paced, collaborative environment where we offer the opportunity to work for a pioneering company in securing big data.

Cloud Security Administrator/Engineer at Epsilon is a hands-on role that requires a high degree of technical Cyber Security expertise in different cloud environments like AWS and Azure. The person is responsible for Security related tasks, including the day-to-day administration of the different information security tools and devices, fine tuning configuration of the devices to reduce false positives and improve effectiveness in security event monitoring. This individual must have the aptitude to use the Security tools to do security analysis of traffic patterns and adjust policy and procedures. Primary responsibilities also include performing technical and non-technical risk assessments on our systems and make recommendations to identify and improve security Risk. The Administrator must have experience in research and remediation of security vulnerabilities using existing or new tools and personal knowledge. The individual in this position interacts closely with personnel from other functions in Information Security and various IT departments.

The candidate will be responsible for leading program maturity efforts and initiatives in the security operations and engineering department. The candidate is responsible for working with the Security Operations Center analysts to ensure the different cloud security tools are performing optimally and security events are detected in time for remediation actions. The candidate is responsible for producing metrics and automated dashboards to measure the effectiveness of the program. The candidate will also be working with the network services team, dev ops teams and other business units on projects to enable existing Epsilon solutions to new clients and supporting the build of new Epsilon products to existing and new clients in cloud environments.

Duties & Responsibilities:

  • Assess, design, implement, automate, and document customer solutions leveraging Amazon Web Service (AWS) and other third-party solutions.
  • Demonstrate architectures, methods and controls required to meet stringent compliance and audit requirements.
  • Proactively stay up to date with developments in relevant technologies.
  • Create and share unique ways to solve problems with others (presentations, blogs, articles, case studies).
  • Install and maintain SIEM, IPS, DLP and other security tools in cloud environments.
  • Respond to and, where appropriate, resolve or escalate reported security incidents.
  • Monitor system logs, SIEM tools and network traffic for unusual or suspicious activity. Interpret such activity and make recommendations for resolution.
  • SIEM (Security Information and Event Management): Must have experience extracting pertinent security data, setting up SIEM solutions and troubleshooting connectivity issues. Experience in Qradar, Splunk, Sumologic, Cloud Trail, etc.
  • Investigate and resolve security violations by providing postmortem analysis to illuminate the issues and possible solutions.
  • DLP (Data Loss Prevention) – Has to be comfortable with the technology concepts and deployment of DLP capabilities in cloud environments.
  • Firewalls – In-depth knowledge of Security Groups, how they work and are used to protect an enterprise.
  • Developing program quality metrics as both program performance indicators and enterprise risk indicators
  • Report unresolved network security exposures, misuse of resources or noncompliance situations using defined escalation processes.
  • Assist and train team members in the use of cloud security tools, the preparation of security reports and the resolution of security issues.
  • Develop and maintain documentation for security systems and procedures.

Minimum Qualifications:

  • Bachelor's Degree in Computer Science, Engineering, or other Engineering or Technical discipline or equivalent relevant experience. Master's Degree preferred.
  • Minimum 2 years of experience as an Cloud Security Administrator or Engineer
  • Knowledge of computer control environments
  • Experience with a broad range of security technologies, including NextGen Firewalls, DLP, NAC, IDS/ IPS, IdAM, Certificate Management, SIEM, Endpoint Protection, Anti-malware, vulnerability management
  • Strong knowledge of technology and security topics including network security, wireless security, application security, infrastructure hardening and security baselines, web server and database security
  • Experience in developing, documenting and maintaining security procedures.
  • Knowledge of network infrastructure, including routers, switches, firewalls, and associated network protocols and concepts.
  • Must have Strong knowledge of TCP/IP and network administration/protocols.
  • Ability to clearly and effectively communicate concerns, issues and research to other teams.
  • Experience in developing, documenting and maintaining security procedures. Experience in a technical customer-facing consulting or advisory role
  • Experience working with Linux and/or Windows servers
  • Experience with enterprise networking (VPN, routing, load balancing)
  • Solid understanding Amazon Web Services (AWS) including VPC, ELB, IAM, KMS, EC2, Config, CloudTrail, CloudFormation, Lambda, and more
  • Working proficiency in: bash, Python, Ruby, Golang, Powershell, and/or .NET
  • Working proficiency with work tracking systems such as JIRA, Workfront, Pivotal, etc.
  • Experience with the development, deployment and automation of security solutions in large enterprise environments to connect to cloud solutions such as AWS and Azure while maintaining secure operations (i.e. firewalls, ACL, security groups).
  • Knowledge of how various AWS and Azure automation strategies and tools such as cloud-init, AWS Lambda, Azure runbooks, and any data formats such as JSON and XML function.
  • Strong technical background and knowledge of network fundamentals and common Internet protocols.
  • Ability to script in one of the following languages: Python, PowerShell, or Perl preferred.
  • Develop procedures to automate various systems and tasks (e.g. automating code builds and deployments) using Jenkins, Git, Docker, Chef, Cloudformation etc.
  • Contribute in the DevOps team to build out our infrastructure and servers currently operating on AWS
  • Lead and Mentor Cloud Engineers

Preferred Qualifications

  • Advanced knowledge of network based, system level and application layer attacks and mitigation methods, and TCP/IP, HTTP/S, and related protocols.
  • Cloud Security and experience with tools used for AWS security is a plus
  • CISSP or other security certification
  • Understanding of FEDRAMP and system cloud migration requirements.
  • Experience reviewing audit logs utilizing SIEM tools
  • Understanding of encryption, hashing, secure random number generation, key derivation, digital signatures, etc.
  • Advanced knowledge of network based, system level and application layer attacks and mitigation methods, and TCP/IP, HTTP/S, and related protocols.
  • Have working experience and knowledge of Unix/Linux operating system. One or more enterprise security products (WAF, DLP, SIEM, IDS, IPS)
  • Configuration management software (Chef, Puppet, Ansible, Salt)
  • Log management and/or correlation systems (Splunk, ELK, Loggly, Sumo Logic, etc.)
  • Infrastructure automation (CloudFormation, Terraform, Troposphere, Heat)
  • Microsoft Active Directory
  • Agile, DevOps and/or continuous integration/continuous delivery
  • CISSP, SSCP, Offensive Security, CPT, and/or CEH certifications a plus



Conditions of Employment

All job offers are contingent upon successful completion of certain background checks which unless prohibited by applicable law may include criminal history checks, employment verification, education verification, drug screens, credit checks, DMV checks (for driving positions only) and fingerprinting.

Great People, Deserve Great Benefits

We know that we have some of the brightest and most talented associates in the world, and we believe in rewarding them accordingly. If you work here, expect competitive pay, comprehensive health coverage, and endless opportunities to advance your career. From tuition reimbursement to scholarship programs to employee stock purchase plans and 401(k)s, we offer associates a variety of benefits that work as hard for them as they work for us.

About Epsilon

Epsilon is a global leader in creating connections between people and brands. An all-encompassing global marketing company, we harness the power of rich data, groundbreaking technologies, engaging creative and transformative ideas to get the results our clients require. Recognized by Ad Age as the #1 Largest World CRM/Direct Marketing Network, #1 Largest U.S. Agency from All Disciplines and #1 Largest U.S. Mobile Marketing Agency, Epsilon employs over 7,000 associates in 70 offices worldwide. Epsilon is an Alliance Data company. For more information, visit, follow us on Twitter @EpsilonMktg or call 1.800.309.0505.

Alliance Data provides equal employment opportunities without regard to race, color, religion, gender, age, national origin, disability, sexual orientation, gender identity, veteran status or any other characteristic protected by law.

Alliance Data participates in E-Verify

For San Francisco Bay Area:

Alliance Data will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of San Francisco Police Code Sections 4901 - 4919, commonly referred to as the San Francisco Fair Chance Ordinance.

Meet Some of Epsilon's Employees

Mayela T.

Senior Business Analyst

Mayela serves clients by gathering notes on specific technical enhancements needed to improve engagement. Then she collaborates with Epsilon’s Development Team to make those enhancements a reality.

Tom M.

Account Executive

Tom switches up his main objectives based on which team he’s currently on as part of the two-year program that serves to expose employees to all that Epsilon has to offer.

Back to top