JOB DESCRIPTION:
- Improve the security posture of our infrastructure including our cloud environments
- Collaborate cross functionally to make design/strategy decisions and advocate for security improvements.
- Respond to infrastructure security alerts and perform investigations
- Evaluate cloud architectures for security related concerns, and consult on mitigation options.
- This role is essentially 50% Linux / System-level security, and 50% Cloud Security
- Build and manage infrastructure for security-related applications / services
What you will need to have:
- 12+ 15+ PREFERRED years of Infrastructure and security
- 8+ years of relevant experience in security with 3+ years securing cloud platforms (e.g. IAM, VPC Security, KMS)
- 3+ years working with and hardening Linux environments (e.g. PAM, SELinux, SSHD, auditd)
- 6+ Years Experience with IaC / configuration management technologies (e.g. Terraform, Puppet)
- Knowledge of basic cryptography and common network protocols
- Basic understanding of containers and related technologies (e.g. k8s)
- Being able to review a platform change for infrastructure security concerns, researching potential problems, clearly articulate to app teams what is wrong, and then being able to support application teams from an infrastructure perspective to be able to secure the system
What would be great to have:
- Bachelors in Computer Science or similar area of study, or equivalent industry experience
- Experience with HIDS and NIDS tooling
- Experience securing large GCP environments
- Experience with SIEM, SOAR, and/or XDR solutions
- Experience with secrets management / PKI tooling (e.g. HashiCorp Vault)
- CISSP, GCP/AWS Cloud Security Engineer, or similar certifications
- Experience with SQL, and securing database technologies such as MySQL, Snowflake, etc