Cloud Security Engineer, Staff

Staff Cloud Security Engineer

General Summary:

You will be collaborating with our engineering team to refine and enhance our security strategies across our large, diverse cloud ecosystem. From your current skillset to those you obtain, your expertise will be utilized to drive the future of our cloud security software. You’ll play a key role in expanding our product roadmap, automating escalations and remediations, and offering insight into potential threats along with their mitigations. You’ll also be involved in taking the knowledge you have and gain from our own CI/CD and Devops processes and apply them practically to contribute to and solve real world problems with dynamic business units and functions. Tying together information from multiple information sources to assist with operational and risk metrics, dashboards, and reporting to highlight overall security posture, risks, and opportunities with users, service teams, and leadership, emphasizing transparency and open communication. There are many exciting aspects, opportunities, and challenges you will face as a member of the team.

Minimum Qualifications:
• Bachelor’s degree in Engineering, Information Systems, Computer Science, or related field and 4+ years of cybersecurity-relevant work experience.
OR
High school diploma or equivalent and 5+ years of cybersecurity-relevant work experience.

Physical Requirements:
• Frequently transports and installs equipment up to 40 lbs.

Responsibilities
 

• Work with the internal team on creating best practices and integrating security considerations in the Software Development Lifecycle (SDLC)
• Analyze events and develop policies within the cloud security platform.
• Leverage infrastructure as code (IaC) tools such as Terraform or CloudFormation to automate the provisioning and management of cloud resources.
• Assist with security baselines, principles, and strategies.
• Participate in the planning and execution of cloud security roadmaps.

• Partner with the cloud team to securely organize and manage cloud account lifecycle, access, security controls, and policies.
• Leverage programming skills to develop tools that streamline security processes and reduce operational overhead.
• Design and implement container security and container security orchestration best practices.
• Design and implement SaaS security posture management (SSPM).

Preferred Qualifications 
We value people from all walks of life and backgrounds. We understand not everyone will meet all the below qualifications on day one. That’s okay! If you’re passionate about technology and want to grow your skills, if you cover even some of these preferences – we encourage you to apply.

• Bachelor’s degree in computer science, Information Systems, Engineering, or other related fields and 3+ years of Cybersecurity relevant work experience OR 5+ years Cybersecurity-relevant work experience without a bachelor’s degree.
• 5+ years of programming experience (Python preferred)
• 3+ years working in cloud environments (AWS, Azure, GCP)
• Strong understanding of cloud security best practices, threat modeling, and offensive techniques.
• Strong understanding of and experience with CI/CD pipelines.
• Fundamental understanding of and experience with Scrum/Agile development.
• Certifications are a plus but not required (e.g., AWS Certified Security Specialty, Azure Security Engineer, Google Cloud Security Engineer, Docker Certified Container Security Expert, Certified Kubernetes Security Specialist.