Senior Staff Cloud Security Engineer - REMOTE

View full description

Requirements:

• Deep technical expertise in public and private cloud compute infrastructure and cloud native technologies.
• Previous successful projects that iteratively transitioned legacy security models to next generation solutions.
• Deep technical knowledge of security threats, risks, and vulnerabilities within IaaS, PaaS, and SaaS environments and integrations.
• Experience in offensive and defensive security roles, with a strong hacker approach to guiding cloud security decisions.
• Experience communicating and presenting to senior and junior staff with the ability to influence stakeholders.
• Experience in a multi-platform environment with containerized or VM-based Linux and Windows.
• Experience with Container risk monitoring at both build and runtime.
• Experience with solving security control requirements with engineering approaches.
• Ability to excel in a fast-paced, startup-like environment.
• Ability to design, perform experiments, and influence security detection and protection solutions.
• Strong knowledge of industry-standard security tools, frameworks, and best practices including Mitre, CIS and NIST.
• Demonstratable proficiency in common scripting languages with examples of automation at scale.
• Experience working with auditors and demonstrating security controls.
• 3+ years of experience with AWS, GCP, Azure, or other cloud providers
• 3+ years in a senior role influencing company direction on security
• 3+ years of experience with top Cloud Identity providers.
• Experience applying security controls to exceed third party attestation requirements (PCI, SOC, …).

Responsibilities:

• Provide strategic and technical security direction in designing, implementing, and managing secure cloud infrastructures.
• Develop and maintain expertise in cloud-native security solutions, including container security, Kubernetes, Istio, and cloud networking and security services.
• Define and implement roadmaps for security enhancements, ensuring alignment with business objectives and minimal disruption to operations.
• Develop strong relationships with key stakeholders, including development teams, operations teams, and executive sponsors.
• Collaborate with various teams to design, deploy, troubleshoot, and enhance security measures, while balancing usability and security.
• Influence and educate staff at all levels on cloud security best practices, promoting a culture of cloud security awareness across the organization.
• Proactively identify opportunities to enhance security measures, streamline processes, and optimize tooling, leveraging an offensive security mindset.
• Support continuous improvement of our cloud security posture through innovative solutions.
• Mentor/train growing security engineers and provide technical direction and project leadership.