Blue Mantis

Security Consultant

Blue Mantis

full-time

Posted on:

Location: 🇺🇸 United States

Visit company website
AI Apply
Apply

Salary

💰 $120,000 - $185,000 per year

Job Level

Mid-LevelSenior

Tech Stack

AWSAzureCloudCyber Security

About the role

  • Advanced Cloud Security Assessment: Conduct in-depth security assessments across Azure, M365, Entra ID, and AWS environments, utilizing advanced security tools to evaluate cloud configurations, data protection strategies, and access controls. Analyze and mitigate risks by identifying misconfigurations, data exposures, and security weaknesses specific to cloud infrastructure.
  • Cloud Engineering and Architecture Design: Design and implement secure cloud architectures tailored to clients’ specific business needs across Azure, M365, and AWS environments. Develop and optimize infrastructure to ensure security, scalability, and resilience, integrating security controls throughout the architecture to protect data and minimize attack surfaces.
  • Risk Detection and Vulnerability Management: Detect and remediate vulnerabilities within cloud security architectures, such as Identity and Access Management (IAM), MFA, M365 weaknesses, unsecured endpoints, and data loss risks. Utilize both manual techniques and automation to uncover hidden risks and enhance data protection of client environments.
  • Data Classification, Management, and DLP Implementation: Assess, design, and implement data classification and Data Loss Prevention (DLP) strategies across Microsoft, AWS, and on-premises environments to protect sensitive data and ensure compliance. Assist clients in categorizing and managing data according to sensitivity, regulatory requirements, and business needs, applying DLP policies to prevent unauthorized access and data leaks.
  • Strategic Threat Simulation: Develop and execute cloud-focused threat simulations to evaluate clients’ defenses against advanced cyberattacks. Utilize Microsoft and AWS security tools, as well as OSINT techniques, to simulate real-world cyber threats and identify potential attack vectors within cloud and hybrid environments.
  • Detailed Security Reporting: Prepare comprehensive reports detailing identified vulnerabilities, potential exploitation methods, and prioritized remediation recommendations. Clearly communicate risks and mitigation strategies related to Azure, M365, Entra ID, and AWS to support informed decision-making by clients and stakeholders.
  • Technical Insight Communication: Translate complex cloud security findings into actionable insights. Document and present advanced cloud-specific vulnerabilities and their implications, equipping clients with the knowledge and providing a roadmap to strengthen their security posture to align with regulatory requirements.
  • Remediation Guidance and Implementation: Provide expert guidance to clients, turning security recommendations into actionable plans. Support the implementation of security best practices, identity management, access controls, and DLP strategies within Microsoft and AWS environments to enhance overall security.
  • Continuous Skill Development and Certifications: Stay updated on certifications, emerging cloud security threats, vulnerabilities, and best practices, with a particular focus on Zero Trust architecture.

Requirements

  • 3-5 years of experience in cloud security, with a focus on Microsoft Azure, M365, and AWS security.
  • Deep understanding of Microsoft Entra ID, Azure AD, Microsoft Defender Suite, Microsoft Sentinel, and DLP strategies.
  • Strong knowledge of AWS security services, including IAM, Security Hub, GuardDuty, and VPC security configurations.
  • Experience conducting security assessments, risk analysis, and remediation in M365, Azure, and AWS cloud environments.
  • Hands-on skills in cloud security architecture, risk management, and incident response and business email compromise.
  • Understanding of exploitation of misconfigurations within the cloud platform.
  • Relevant certifications such as Microsoft AZ-500, MS-500, SC-100, SC-200, SC-400, and industry standards like CISSP or CCSP (a plus).
  • Bachelor’s degree in Computer Science, Information Security or a related field.
  • Uphold ethical standards and maintain strict confidentiality.
The Home Depot

Senior Cybersecurity Manager – AI Governance and Security

The Home Depot
Seniorfull-time$190k–$240k / year🇺🇸 United States
Posted: 4 hours agoSource: homedepot.wd5.myworkdayjobs.com
Cyber Security
Fidelity Investments

Director, Infrastructure Security

Fidelity Investments
Leadfull-timeNew Hampshire, Rhode Island, Texas · 🇺🇸 United States
Posted: 4 hours agoSource: fmr.wd1.myworkdayjobs.com
Cloud
Boeing

Senior Manager, Cybersecurity Oversight – Classified Operations

Boeing
Seniorfull-time$143k–$193k / yearMontana · 🇺🇸 United States
Posted: 6 hours agoSource: boeing.wd1.myworkdayjobs.com
Cyber Security
Boeing

Product Security Engineer

Boeing
Junior · Midfull-time$99k–$133k / yearWashington · 🇺🇸 United States
Posted: 6 hours agoSource: boeing.wd1.myworkdayjobs.com
AWSAzureCloudCyber SecurityGoogle Cloud PlatformJavaPythonSubversion
Fifth Third Bank

Lead Information Security Engineer – Vulnerability Management

Fifth Third Bank
Seniorfull-time$81k–$169k / year🇺🇸 United States
Posted: 6 hours agoSource: fifththird.wd5.myworkdayjobs.com
AWS