Auditing, Benchmarking, Cloud Computing, Consulting, Continuous Deployment/Delivery, Continuous Integration, Documentation, GCP (Good Clinical Practices), ISO (International Organization for Standardization), Industry Standards, Information/Data Security (InfoSec), Microsoft Windows Azure, Multiplatform/Cross-Platform, Operations Security (OPSEC), Public Cloud, Python Programming/Scripting Language, Regulations, Regulatory Compliance, Risk, Risk Management, Scripting (Scripting Languages), Security Analysis, Software Development, Team Player, Technical/Engineering Design, U.S. National Institute of Standards and Technology (NIST)
Introduction
Join our team as a key player in enhancing and securing our enterprise technology platforms. In this role, you will consult on complex initiatives with broad impact and large-scale planning for Information Security Analysis. Your expertise will contribute to resolving multi-faceted situations requiring a solid understanding of the function, policies, procedures, and compliance requirements.
Required Skills & Qualifications
- 5 years of Information Security Analysis experience, or equivalent demonstrated through work or consulting experience, training, military experience, or education.
- 5+ years of cloud technology experience.
- 3+ years of risk and control experience.
- 3 to 5 years of cloud security posture management.
- 2 to 4 years of experience in software development with Python, including writing scripts.
- Hands-on experience with security configuration baselines or hardening standards.
- Strong working knowledge of public cloud platforms (Azure and/or GCP preferred).
- Experience mapping security controls to industry standards (CIS, NIST, ISO).
- Ability to produce clear, structured, audit-ready documentation.
- Experience operating in large, regulated enterprise environments.
- Applicants must be able to work directly for Artech on W2.
Preferred Skills & Qualifications
- Experience with a baseline as code program.
- Familiarity with cloud organization level controls (management groups, folders, org policies).
- Experience with CI/CD integration of security controls.
- Exposure to risk management, audit response, or regulatory examinations.
- Background in automating governance processes (exception workflows, control validation, reporting).
Day-to-Day Responsibilities
- Design, engineer, and operationalize security configuration baselines across enterprise technology platforms.
- Translate policy requirements and industry standards into codified, enforceable, and auditable security baselines.
- Convert standards, policies, and risk requirements into baseline as code, enabling preventative controls, drift detection, exception workflows, and enterprise-scale governance via the Cloud Security Benchmark (CSB) system of record.
Company Benefits & Culture
- Collaborative and innovative work environment.
- Opportunities for professional growth and development.
- Commitment to diversity and inclusion.
For immediate consideration please click APPLY to begin the screening process with Alex.