Work Model Onsite

Job Description

The Network Security Engineer is responsible for designing, implementing, and maintaining security controls that protect cloud infrastructure, cloud-native applications, and artificial intelligence (AI) and machine learning (ML) platforms. The role focuses on reducing risk, ensuring compliance, and enabling secure innovation in cloud and AI environments.

Key Responsibilities

• Design, implement, and manage security controls for cloud platforms, including infrastructure-as-a-service (IaaS), platform-as-a-service (PaaS), and cloud-native workloads
• Secure AI and ML systems, including model development environments, training pipelines, data pipelines, APIs, and inference services
• Assess and mitigate risks related to cloud misconfigurations, identity and access management, data exposure, and insecure APIs
• Implement and maintain cloud security tooling such as CSPM, CWPP, CIEM, container security, and API security solutions
• Collaborate with engineering, DevOps, data science, and AI teams to embed security into CI/CD pipelines and ML workflows (DevSecOps / MLOps)
• Conduct security architecture reviews, threat modeling, and risk assessments for cloud and AI initiatives
• Define and enforce security standards, guardrails, and best practices for cloud and AI environments
• Monitor cloud and AI environments for security events, investigate alerts, and support incident response activities
• Using TTP Add/Modify Splunk alerts to triage notables
• Ensure protection of sensitive data used in AI systems through encryption, key management, data loss prevention, and privacy controls
• Support compliance with regulatory, contractual, and internal security requirements (e.g., SOC 2, ISO 27001, NIST, GDPR)
• Stay current on emerging cloud and AI threats, vulnerabilities, and industry best practices

The above job description and requirements are general in nature and may be subject to change based on the specific needs and requirements of the organization and project.

Skills and Qualifications

Required

• 8+ years Proven work in security architecture, demonstrating solutions delivery, principles and emerging technologies, designing and implementing security solutions. Continuous monitoring and making improvements to those solutions
• 8+ years Designing and implementing the security measures needed to protect data stored on public clouds against unauthorized access, including secure authentication methods, encryption, access control lists, intrusion detection systems, firewalls, other measures
• 8+ years Understanding of multi-cloud security architectures covering infrastructure, information security tools, cloud-based application security and other cloud-based technology and infrastructure architectures
• 8+ years Consulting and engineering in the development and design of security best practices and implementation of solid security principles across the organization, to meet business goals along with customer and regulatory requirements
• 8+ years Proven expertise in security considerations of cloud computing: They include data breaches, broken authentication, hacking, account hijacking, malicious insiders, third parties, APTs, data loss and DoS attacks
• 8+ years Knowledge and understanding of threat analysis and assessment of potential and current information security risk/threats and designing solutions to mitigate those threats
• 8+ years Knowledge and experience working with relevant National Institute of Standards and Technology (NIST) standards
• 8+ years Knowledge and experience working with ISO27001 – specifications for a framework of policies and procedures that include all legal, physical and technical controls involved in an organization’s risk management
• 8+ years Experience with SPLUNK, creating alerts, executive reports, dashboards
• 8+ years Designing and developing security architectures that align with an organization’s strategic goals. Creation of architectural artifacts for key technology initiatives
• 8+ years Ability to resolve complex security issues in diverse and decentralized environments; to learn, communicate, and teach new information and security technologies; and to communicate effectively
• 8+ years Conduct forensic investigations on cyberattacks to determine how they occurred and how they can be prevented in the future
• 8+ years Creating/reviewing/updating security policies and standards for the public/private/hybrid cloud contexts

Preferred

• 3+ years GSEC, CEH, CISA, CCSP desired
• 3+ years Certification as an AWS Solutions Architect, Cloud Security Certification, and/or OpenStack Administrator Certification a plus (Other cloud-related certification also a plus)
• 3+ years Experience with Endpoint Detection and Response (i.e. EndGame, Crowdstrike, CyberReason). Detect and respond to alerts from end point detection response tools
• 3+ years Experience with Email Threat Management (i.e. Proofpoint, MimeCast, Microsoft)
• 3+ years Experience with SIEM engineering design/management/analysts (i.e. Splunk, Rapid7, SumoLogic)
• 3+ years Experience with Data Loss Protection/Cloud Access Security Brokers (i.e. Symantec, Microsoft, Bitglass, Netskope)
• 3+ years Experience with Cloud Enterprise Network Security (i.e. Cisco Umbrella, Palo Alto, ZScaler)

This is a contract opportunity with a great organization. As a contractor for Smith Johnson, you are eligible for medical, dental, life, disability. Smith Johnson pays for 70% of your medical and dental and 100% of life and disability. The contract is also eligible for PTO/holiday accrued monthly. You are also eligible for a 3% retirement matching plan. Smith Johnson believes in taking care of our contractors.  

For additional job openings

see our website:

www.smithjohnson.com