Cloud Operations Security Engineer, Kandy Business Solutions

    • Job Tracking ID: 512052-608429
    • Job Location: Morrisville, NC
    • Level of Education: Any
    • Job Type: Full-Time/Regular
    • Starting Date: ASAP
    • Experience Level.: 7+ years
Invite a friend
facebook LinkedIn Twitter Email

Job Description:

About Ribbon:  Ribbon Communications is a company with two decades of leadership in real-time communications. Built on world class technology and intellectual property, the company delivers intelligent, secure, embedded real-time communications for today’s world.

Position Title: Cloud Operations Security Engineer, Kandy Business Solutions

Location: Morrisville, NC

Position Summary:

Ribbon Communications is seeking a Cloud Security Engineer to drive business critical projects in a dynamic and fast-paced environment. As a Cloud Security Engineer working with the Kandy Business Solutions (KBS) team, you will join a world-class team responsible for end to end operations of cloud services. More specifically, you will be responsible for the overall security architecture of our cloud-based solutions, including determining security requirements; planning, implementing, and testing production systems.  Assistance with network configuration of the current network switches, firewalls and routers may be required. The candidate will also be preparing security standards, policies, and procedures and ensuring they meet with both Ribbon, regulatory and industry-wide security practices.


Experience and Skills:


  • Provide strategic direction as it relates to cybersecurity and data privacy initiatives

  • Exhibit a detailed understanding of cloud security and cloud infrastructure services

  • Architect, design, engineer, implement and integrate cloud security solutions

  • Drive implementation of legal, contractual and regulatory security requirements for information security compliance and audit readiness.

  • Serve as the central point of contact for security inquiries, incidents and consulting from internal and external sources (clients, regulatory agencies, etc.)

  • Create SIEM alarms, develop correlation rules, create and modify policies, and monitor events and trends

  • Lead, coach and mentor Cloud Services team to incorporate security while developing highly scalable, distributed applications involving Cloud Ops, DevOps and Security teams


  • Experience with the assessment, implementation, management and documentation of a broad set of information security technologies and processes (e.g., application security, risk management, data protection, encryption, key management, identity and access management, SIEM log correlation, security governance, network security) within a SaaS, IaaS, PaaS, or cloud environment

  • Detailed knowledge of software development life cycle, code review methodologies, secure coding practices, threat modeling, architectural risk assessments, application assessments, penetration testing, and security vulnerabilities

  • Understanding and basic knowledge of Cisco Router (ASR), switch (IOS) and firewall (ASA) configuration. 

  • Experience with service-oriented architecture for cloud-based services

  • Experience working with cloud security management / governance tools, cloud access security brokers, cloud services and 3rd party hosted services, and server virtualization products and technologies

  • Understand networking concepts as related to security and how to configure such in production environments

  • Solid understanding of the end-to-end process, including architecture, design & engineering, implementation, and operations

  • Experience performing security design reviews to assess security implications for introduction of new or differing technologies within the environment

  • Ability to provide direction and guidance on architectural use cases and requirements for security related efforts
  • Knowledge of information security standards (e.g., ISO 17799/27002, HIPPA, NIST, FedRAMP, etc.), rules and regulations related to information security and data protection, and Cloud Security Alliance (CSA) best practices and guidelines
  • Demonstrated effective and strong written and verbal communication skills
  • Ability to shift from high-level thinking to realistic and pragmatic execution including actually configuration of elements
  • Willingness and ability to work with teams, including ability to build relationships using an open and respectful communication and collaboration style

Education/Experience Requirements:

  • Bachelor degree in Computer Science, Information Technology, Engineering, or Mathematics

  • 7+ years of increasing responsibility for positioning and delivering Cloud and Internet facing applications with a focus on security

  • IT security or Cloud certifications to include, but not limited to:

    • CISSP
    • CCSP
    • CCSK
    • Certified Cloud Professional/Architect
    • VMware VCP
    • AWS Certified Solutions Architect
    • Google
    • IBM

Please Note:

'All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.'

US Citizens and all other parties authorized to work in the US are encouraged to apply.