Senior Cloud Engineertags.new

Published: 2025-11-17
Fivesky

Fivesky focuses on offering the best cybersecurity solutions globally across a broad range of industries from design to implementation, with a strong focus on the financial services sector. Our insights are complemented by extensive expertise across all aspects of technology. Our specialties include but are not limited to: Networking Cyber Security Cloud storage Enterprise applications Servers Virtualization We are committed ...

Apply

Job details

Alpharetta, United States (city)
On-site
Full-time

Categories

AWS
Architect
Azure
Cloud
Network
SMTP

Are you a cloud security expert with a passion for designing and securing cutting-edge cloud environments? Do you want to help transform financial platforms by leading high-impact cloud security architecture across Azure and AWS? If so, then you might be Fivesky’s next Cloud Security Architect!

Who you are: 

  • Experienced in Data Loss Prevention (DLP), cloud integration, and security architecture across enterprise environments.

  • Deeply familiar with networking, firewalls, and data protection technologies, and able to troubleshoot issues across application and transport layers.

  • Capable of automating security processes using scripting languages and developing workflows for incident detection, alerting, and remediation.

  • A strong collaborator who can partner with Operations and Network teams to deliver secure, stable, and scalable enterprise environments.

  • Bachelor's Degree is required in Computer Science, Computer Information Systems, or Electrical Engineering. 

It would be awesome if you had:

  • Expertise in architecting and engineering DLP solutions integrated across user, network, and cloud environments.

  • Knowledge of Cloud Access Security Brokers (CASB/MCAS), Active Directory, and TLS encryption for enterprise data protection.

  • Experience performing DLP installations, upgrades, health checks, and policy fine-tuning to reduce false positives.

  • Hands-on familiarity with network traffic analysis, VPN tunneling, NAT, and proxy configurations (PAC, ICAP, etc.).

  • A track record of designing and implementing automated, scalable security controls aligned to evolving business and compliance needs.

  •  

What you will do:

  • Implement security controls in an enterprise environment and develop security solutions for information protection.

  • Architect and engineer DLP solutions across the enterprise environment and integrate DLP controls across user environments.

  • Advise on Data Loss Policy development and configure DLP policies to prevent data loss in email and web traffic.

  • Perform DLP installations and upgrades in production, and conduct health checks and performance assessments.

  • Create deployment workflows and publish procedural documentation and fixes in the knowledge base.

  • Configure network scans to identify and quarantine sensitive data at rest on DLP detection servers.

  • Generate EDM fingerprints and integrate them into detection rules for exact data match capabilities.

  • Extend DLP capabilities to cloud applications using MCAS/CASB for monitoring protected data in motion and at rest.

  • Automate security procedures using scripting languages based on the operating system in use.

  • Configure detection server routing through specific TCP ports and build DLP detection rules for endpoint monitoring.

  • Set up prevent actions for HTTP/S, FTP, SMTP, SMB, SFTP, etc., including web block, encryption, and quarantine responses.

  • Troubleshoot network issues involving firewalls, proxies, gateways, and routing at multiple network layers.

  • Develop PAC files and ICAP configurations for proxy routing and Network Prevent servers.

  • Interpret network diagrams and apply knowledge of VPN, NAT, OSI model, LAN/WAN, SSL, and packet analysis for DLP architecture.

  • Configure Active Directory over TCP ports with LDAP and enable Kerberos authentication for domain access.

  • Apply group policies in Active Directory for DLP user/group exceptions and access control.

  • Generate and configure key pairs and certificates for TLS email encryption.

  • Collaborate with Operations teams to troubleshoot production issues and perform root cause analysis for data loss events.

  • Analyze network traffic logs and fine-tune detection server performance based on traffic loads.

  • Leverage SIEM tools to monitor suspicious user activity in network traffic.

  • Develop incident response workflows, perform DLP incident analysis, and fine-tune detection rules for accuracy.

  • Build user attributes for DLP security incidents.

  • Modify firewall rules to ensure detection coverage while maintaining compliance with company security policy.

Who we are: 

  • Fivesky is a fast-growing, global technology solution provider. We partner with the world’s largest financial service firms to deliver networking/infrastructure, cybersecurity, and cloud-based solutions for complex, global projects. 
  • At Fivesky, our employees are our greatest asset, and we strive to build a strong team culture centered on highly competitive compensation, professional development, career advancement, and fun.
  • This is an FTE position in Alpharetta, GA or unanticipated client sites within the US. The compensation package is based on experience and qualifications. Benefits include: PTO/ paid sick leave, holidays, Health, Dental, and Vision insurance, and Retirement.
  • Fivesky is an equal-opportunity employer. Fivesky prohibits discrimination and harassment of any type and affords equal employment opportunities to employees and applicants without regard to race, sex, age, color, religion, national origin, sexual orientation, disability status, genetic information, protected veteran status (United States positions), or any other characteristic protected by law. 
  • Mail Resumes to: Fivesky, LLC, 1 Pennsylvania Plaza, Suite #2222, New York, NY 10119

(FS-RID-0899)

Apply