Apolaki Systems

08/04/2023

Jojo Subido

08/04/2023

AWS DEVSECOPS AUTOMATION ENGINEER

Requirements and Responsibilities

5 years of technical experience in development, operations, or joint DevOps or DevSecOps responsibilities in AWS.

Embody the core values of sharing with team members and devising security solutions that help detection analysts defend the environment, and secure self-service for DevOps and Data Science teams.
AWS Professional Certification (e.g. AWS Certified DevOps Engineer - Professional or AWS Certified Solutions Architect - Professional).
Must be comfortable working solo
In-depth familiarity with complete suite of AWS Services, with particular depth in those that are heavily used when providing DevOps Automation solutions, including tools like CloudFormation, Code* Services, CloudTrail, lambda, CloudWatch, EC2, IAM, OpsWorks, Route 53, S3, RDS, SES, KMS, TGW, Organizations, and VPC.
Solid background in Software Development including object-oriented programming and test driven development.
Experience establishing and employing Continuous Integration practices and ex*****on platforms.
Frequent and comfortable use of configuration management automation tools in creating continuous delivery systems.
You are expected to be able to assess risks and plan solutions for AWS, and collaboratively work with other team members and take direction from the Cloud Security Architect to execute them to achieve successful risk mitigation and increased response capability in AWS.
You are expected to continually assess successful and not so successful security practices, and to collaboratively adapt team security practices that apply to AWS.

The most important requirement is character and attitude. Must have enthusiasm for technology and a high level of curiosity. People that require a lot of hand holding will fail on this assignment. We need people that can show interest in new things on their own, without being told.

We are seeking engineers who appreciate and have experience with security, development, as well as operations.

The candidate doesn’t need to be a security expert but obviously will need to learn security for this DevSecOps role, as this group is responsible for securing AWS. The primary goal is to update the existing AWS security deployment and usage creating AWS security systems for ATR detection analysts to be effective in responding to security events in AWS, also setting the expectations and building guardrails for the Data science teams using AWS. This position will interact frequently with one key DevOps team member who looks to ATR for Security guardrails, configurations, and guidelines in AWS.

Our engineers need to be ready to invest themselves in hands-on keyboard activity. They will be committing code to the likes of Git repos every day. We do not need hand waving architect-only types, though we like engineers who can both knock out code and be comfortable sharing large-scale and abstract concepts in a company presentation.

We want hardcore, full-stack-aware engineers who are not afraid to learn the wealth of tools we need to employ and who are comfortable with a constantly changing AWS landscape of tools and techniques as well of the ever-evolving threat landscape that drives attacks on the cloud. They absolutely need to be able to communicate in English both verbally and in writing. 100% of our communication is done remotely and requires super clear thought, enunciation, and articulation.

Other engineers on the team tend to work in teams of two, that being said, the circumstances for this position have resulted in this position operating in a solo manner.

We love Slack but unfortunately, we live in Microsoft Teams since Teams is the preferred platform at this client. Even though everyone is in different places, we have a team culture of open communication with-in our team, and sharing with each other, which helps to makes up for the geographic separation, time zones, and lack of everybody sitting in the same office.

Lastly, while the focus at this client is on Microsoft and Azure when cloud is mentioned, AWS is where work that impacts the bottom line takes place today.

08/04/2023

M365 SECURITY ENGINEER

Technical hands on person for M365 security engineering to join an existing M365 security operations person and to assume responsibilities from a 3rd party vendor currently performing engineering and architecture duties for M365. Work consists of hands on automation and development work, architecture or creating automated guardrails for M365. Deep knowledge of the M365 (office 365) platforms. Heavy PowerShell, KQL, REST APIs, C #, Azure function Apps, event grid, Azure Automation and logic apps. Creative problem solving a must. Experience with enterprise level windows system automation.



MICROSOFT SECURITY ENGINEER (Azure and M365)

Technical hands on Microsoft Azure security engineering, heavy automation across Azure including Azure Policy (deployed via CICD), dynamically created management groups, subscriptions and resource groups, Automation for images and deployed VMs, Conditional Access, MFA, Azure AD Identity Protection, PIM, Sentinel (SOAR) and Microsoft Defender 365 integration. Heavy use of PowerShell, APIs, C #, KQL, event grid, logic apps, function Apps, and Azure Automation to build custom solutions as needed. Creative problem solving a must. Experience with enterprise level windows system automation.

08/04/2023

Good morning :) We are looking to fill several positions as follows:

DETECTION ANALYST

US based, GMT-5 preferred but open to other US time zones

The position

Hands on technical. Tune existing security products, have an interest in cloud security, build playbooks for the triage of existing alerts, create new detections and alerts, resolve existing applicable alerts, hunt down BEC, opportunistic threats, and help find and stop APT, repel red teams in Windows AD and the clouds. Work with, and advise the fully populated SOC, stay currently with the latest security events, learn continuously, take training, collaborate and assist team members, take ownership of issues and challenges rather than pass them off. 100% remote.

Experience

Have a solid understanding of how the Internet works, comfortable with pcaps, API’s, OOP scripting, windows event logs, Sysmon, fiddler, SIEMs, and a fan of automation. SME in one area of information technology, understand MITRE ATT&CK concepts and familiar with Offensive basics. SANS certifications welcome but not necessary.

How the team is run

Agile for efforts improving systems and project related work, case management system for tracking investigations.

02/10/2023

From Programmer, Consultant, Project Manager, Program and Portfolio Manager to negotiating contracts for a company I've long dreamed of. Featuring

View Ramon J.’s profile on LinkedIn, the world's largest professional community. Ramon has 10 jobs listed on their profile. See the complete profile on LinkedIn and discover Ramon’s connections and jobs at similar companies.

02/10/2023

Apolaki Systems is proud to announce that we are offering consultant engagements, training, and auditing for your company's Cyber Security and Risk Management needs. Through a limited partnership with Blue Cyren, https://bluecyren.com/, we are happy to combine excellence in Cloud-based Oracle, SAP, and UKG Implementations with the safest and most robust safeguards and risk mitigation solutions and practices on the market.

02/10/2023

We have reached a new milestone in our journey as we just signed our first MSA with Hunt Oil Company in Dallas to provide IT and HRIS consultants on an on-going basis. Congratulations to Jojo Subido and Ramon Jimenez, PMP, OCM, CSM, CSSGB for making this possible and to our new partners at Hunt.

10/27/2021

Congratulations to Jojo Subido for being awarded Consultant of the Month (October 2021) at BravoTech. Well deserved and just in time to celebrate his upcoming anniversary with Apolaki Systems LLC. Jojo will soon be celebrating a year on the Hunt Energy Project a Change Manager for the Oracle HCM project and is spearheading the Production Support initiatives. Kudos, sir.

10/04/2021

We are committed to supporting our community veterans because we will never forget where we came from and who taught us our values and motivation to our clients.