Senior Security Engineer, Cloud

Come work at a place where innovation and teamwork come together to support the most exciting missions in the world!

Job Description:

As a Cloud Security Engineer, you will be part of an engineering team responsible for researching, developing, and delivering compliance signatures for Cloud security products. In this role, you will be crucial in conducting extensive research in cloud security, focusing on understanding cloud technologies and implementing security best practices. You will work on numerous Cloud platforms, Cloud Services, SAAS applications, and security standards like CIS, CSA-CCM, NIST, DISA, and PCI-DSS and help customers assess configurations and compliance. If you are passionate about cloud technologies, infrastructure as code, and optimizing cloud-based environments, this role offers an exciting opportunity to shape our cloud strategy and drive innovation.

Responsibilities:

• Conduct in-depth research in cloud security to stay abreast of the latest trends and best practices.

  
  

• Research and develop signatures for cloud security products using API calls and JSON processing to identify and fix non-compliant cloud platforms/services-related configurations and settings. 

  
  

• Research hardening Cloud Platforms, SAAS applications, Kubernetes and cloud service configurations and settings. 

  
  

• Track updates pushed by cloud service providers on respective supported cloud platforms/services.

  
  

• Keep updated with industry standards and features for systems and platform compliance.

  
  

Qualifications:

• BS in computer science with 3-6 years of experience in the information security domain. MS in computer science or cyber security is preferable.

  
  

• Experience with public cloud platforms (Azure, AWS, GCP, Oracle), including multi-cloud considerations.

  
  

• Experience with scripting languages, including Python and Bash.

  
  

• Familiarity with cloud terminology and concepts, such as CSPM, CIEM, KSPM

  
  

• Knowledge and hands-on experience of several types of security vulnerabilities and attacks.

  
  

• Proficiency in Kubernetes, including understanding its architecture, deployment, and security best practices.

  
  

• Skills in designing CI/CD pipelines (e.g., Azure DevOps, Jenkins) and pipeline deployment (e.g., Terraform, Cloud Formation).

  
  

• Understand and explore APIs (REST, Java, PowerShell, Shell) provided by cloud service providers (AWS, Azure, Google Cloud Platform, Oracle, etc.).

  
  

• Knowledge of the NIST Cybersecurity Framework and MITRE ATT&CK Framework.

  
  

• Excellent communication skills with the ability to work collaboratively and effectively with cross-functional teams

  
  

Additional Plus Competencies:

• Security Certifications like CEH, CISA, CISM, CISSP, ISC2-CCSP

  
  

• Cloud platform-based certifications like AWS/Azure/GCP Certified Developer/Solution Architect

  
  

• Exposure to Security benchmarks like the CIS, SCCM, DISA, and STIG

  
  

• Basic understanding of security standards/mandates like CSA-CCM, NIST, PCI-DSS, MITRE, etc.