Job Overview:

Wind Creek Hospitality is looking for a high-energy and driven person to join its Security Team in advancing the security environment of our growing Cloud environments. You’ll work closely with Wind Creek Hospitality technology and data teams using a risk-based approach to implement security at scale. This go-to role has responsibility for security applications, processes and configurations that directly impact the security posture of Wind Creek Hospitality SaaS products in Cloud environments.

You’ll bring Cloud (AWS and Azure) experience to weave security throughout our cloud infrastructure, data and applications. The successful candidate will be curious, creative, and tenacious, who views challenges to grow professionally in the cloud security space. Knowledge of Azure is required to be successful in this role.

Purpose:

Our genuine engagement and positive energy provide guests an escape from their routine into our exciting fantasy world of fun, chance, and possibility, where everyone feels a sense of belonging and importance.

Value System:

Our enthusiastic commitment to our purpose inspires and empowers us to do everything right, have fun, and be the best. We will be recognized fairly, elevating our levels of personal accountability, and focus on our customer. The resulting creation of wealth will grow opportunities for all.

Duties and Responsibilities:

• Collaborate with Wind Creek Hospitality Application, Data, Development and Technology Teams on the implementation of Cloud (AWS and Azure) solutions and applicable security configurations and tools.
• Collaborate with development and engineering to ensure security for entire SDLC, including vulnerability management, reporting and remediation.
• Oversee and manage internal customer requests for security-relevant solutions and processes.
• Support Security Solutions in the cloud, from proof of concept to operations and reporting to troubleshooting tools.
• Lead detection, mitigation, prevention and remediation efforts and drive continuous improvement across the cloud security posture with effective countermeasures and targeted solutions.
• Develop clear risk insight from analysis of security, network and application logs and threat intelligence.
• Manage and monitor security throughout product lifecycle from development to operations, with a DevSecOps mindset.
• Research and implement security solutions to monitor and manage infrastructure and product security.
• Leverage AWS and Azure monitoring components to create deeper analysis, detection, and automated response capabilities.
• Oversee and resolve Azure instance and component security configuration drift, root cause analysis and recommend improvements to advance the baseline.
• Download and test new security software and/or technologies.
• Manage and/or provide guidance to junior members of the security team.
• Other duties and responsibilities as assigned.

Job Requirements: (please ensure you meet the listed requirements prior to applying)

• High School diploma or GED required or currently enrolled and successfully complete a GED program within 6 months from start date as a condition of continued employment
• Bachelor's Degree in Computer Science or related field
• Seven (7) years’ experience in information technology, with a minimum of three (3) years’ experience in cloud administration - required
• Active Microsoft, Cloud, Database, Storage or Virtualization Administrator (Mid or Senior level) - required
• Active Security certification, examples include but are not limited to: Microsoft Security Engineer, CISSP, CISA, CRISC, CWSP, GIAC certifications, PenTest+, Security+ or OSCP - required
• Experience supporting applications in a service-focused industry, with Food and Beverage Applications, Various Gaming applications and hotel applications experience- preferred
• Advanced ability to perform security system configuration and administration, system updates, policy compliance, and security assessments.
• Solid troubleshooting skills, good communications skills both written and oral, ability to multitask in a fast, dynamic environment built on multi-vendor security controls.
• Advanced understanding of common IT security frameworks, controls and protocols, technologies, threats, and vulnerabilities are necessary.
• Experience performing IT forensic investigations, incident handling, record keeping and reporting
• Working knowledge of virtual environments (VMware, Microsoft, Red Hat, Oracle, etc.)
• Expert working knowledge of Microsoft Windows, Active Directory, and common desktop/server applications.
• Solid understanding of cloud computing (Azure, AWS, Snowflake) 
• Working knowledge of diagnostic utilities, including but not limited to SolarWinds, Wire Shark, and Tenable.io
• Experience with scripting: JavaScript, Java, Python, SQL, Scala and Power Shell.
• Basic knowledge and/or experience with SQL, Oracle, and Tomcat.
• Experience developing, documenting, and maintaining security policies, procedures, and processes.
• Ability to make sound and logical judgments.
• Good understanding of the organization’s goals and objectives.
• Able to conduct research into confidential issues and maintain absolute secrecy.
• Ability to prioritize and execute tasks in a high-pressure environment and make sound decisions in emergency situations.
• Ability to present ideas in a user-friendly language, highly self-motivated and directed, and keen attention to detail.
• Willing to travel outside of the United States (valid passport is a plus).
• Willing to work odd and irregular hours including nights, weekends, and holidays.
• Willing to travel and participate in training as recommended or required.
• Must have a valid and current State Driver’s License and an insurable driving record for purposes of driving company vehicles as required.
• Must have a Tribal Gaming License (or the ability to obtain and maintain a license) as a requirement for this position.
• Must have willingness and ability to work in a smoke/secondary smoke environment.