Basic Qualifications

Bachelor's degree in a related specialized area or equivalent is required plus a minimum of 8 years of relevant experience; or Master's degree plus a minimum of 6 years of relevant experience.

Due to the nature of work performed within our facilities, U.S. citizenship is required.

Responsibilities for this Position

The General Dynamics Mission Systems (GDMS) Security Architecture and Engineering (SAE) team has an immediate need for a Cloud Security Engineer to provide support of operational innovation and security direction to the business to elevate the company's security posture within a cloud computing infrastructure. This position will support the transformational journey and be adept at dealing with disparate networks, systems, applications and data systems to maintain the level of rigor required to adhere to business direction.

The Sr Advanced Cloud Security Specialist will architect and deploy a secure cloud application infrastructure that enables their organization to meet business needs by using their understanding of security best practices and leveraging next generation security technologies. The candidate must be highly technical and possess at least 7 years' experience in security and systems configuration and administration across a wide variety of cloud infrastructure, including software as a service (SaaS), infrastructure as a service (IaaS) and platform as a service (PaaS). The Cloud Security Engineer will work with the network, architecture and cloud engineering teams, analyzing business demands and supporting use cases and develop supporting solutions and designs that align with accepted modern cyber security frameworks and adhere to our overall strategy in defending against unauthorized access to GDMS's data.

Duties and Tasks

• Serve as a cloud security subject matter expert by providing guidance on industry best practices and defense in-depth strategies for the security architecture of both cloud-based and on prem systems
• Perform technical risk assessments of new technology and ensure the solution meets IT Cyber security policies and frameworks and secure architecture designs
• Assess and measure risk impact of a security deficiency and communicate the risk or risks to the required IT Cyber teams and stakeholders
• Recommend, test, design, deploy and optimize threat detection/prevention solutions for DLP, Data Encryption, Next-Gen Firewalls, Cloud Security products, IDS/IDPS, SASE, Zero Trust and other industry standard security technologies.
• Develop solution test procedure, test report and implementation plan documents as required for a given project
• Proactively identify issues and recommend configuration settings or supporting solutions to mitigate security deficiencies in the GDMS network
• Perform security approval of firewall and network changes of on prem and cloud-based systems
• Work with the respective functional teams and stakeholders to resolve security related configuration issues
• Work with the project teams to assist in the test and evaluation of new solutions ensuring the solution satisfies IT Cyber functional requirements

Knowledge, Skills and Abilities:

• Experience with implementation, configuration, and integration of security products from vendors such as Palo Alto Networks, Cisco, ZScaler, AppGate, Crowdstrike, Okta, VMWare, Illumio, Guardicore and Microsoft
• Familiarity with emerging cloud security solutions and networking concepts with AWS or Azure, both preferred
• Strong understanding of enterprise network security technologies including but not limited to web security, proxies, firewalls, SSL/TLS, GRE and IPsec tunneling, DNS, load balancing, SD-WAN, VPN's, DLP, Advanced Threat detection, killchain and threat analytic technologies
• Strong understanding of authentication and authorization protocols including OAuth, OpenID Connect, SAML 2.0, Kerberos and practical knowledge of conditional based access control technologies to effectively implement adaptive and risk-based network access control
• Knowledge of SaaS applications and the security implications around integrating them into SASE solutions
• Strong understanding of defense-in-depth security best practices
• Highly motivated self-starter who enjoys engineering challenges and learning new tools and technology
• Able to accept & integrate constructive feedback
• Demonstrates ability to work collaboratively and effectively with a wide range of individuals
• Demonstrates ability to learn and apply GDMS culture, policies and processes
• Effective communication skills (written and verbal)
• GSEC, GCIA, GCIH, GFE, GCFA, CCNA, CCNP, CCIE, CISA, CISSP, CISM, or CIA Certifications preferred

NOTE: This position can be supported remotely.

Minimum Salary

USD $125,000.00/Yr.

Maximum Salary

USD $135,000.00/Yr.

Salary Note

Note: The compensation information listed is a good faith estimate for this position only and is provided pursuant to the Colorado Equal Pay for Equal Work Act and Equal Pay Transparency Rules. It is estimated based on what a successful Colorado applicant might be paid. It assumes that the successful candidate will be in Colorado or perform the position from Colorado. Similar positions located outside of Colorado will not necessarily receive the same compensation.

Company Overview

General Dynamics Mission Systems (GDMS) engineers a diverse portfolio of high technology solutions, products and services that enable customers to successfully execute missions across all domains of operation. With a global team of 12,000+ top professionals, we partner with the best in industry to expand the bounds of innovation in the defense and scientific arenas. Given the nature of our work and who we are, we value trust, honesty, alignment and transparency. We offer highly competitive benefits and pride ourselves in being a great place to work with a shared sense of purpose. You will also enjoy a flexible work environment where contributions are recognized and rewarded. If who we are and what we do resonates with you, we invite you to join our high performance team!

General Dynamics is an Equal Opportunity/Affirmative Action Employer that is committed to hiring a diverse and talented workforce. EOE/Disability/Veteran