Cloud Security Engineer - 100 % Remote Position

  • Full-time

Job Description

We’re looking for a Security Engineer, 100 % Remote Position.  This is an Permanent Position……This position will remain 100% remote work from home.

A Senior Security Engineer who enjoys working with cutting edge technologies. You will work to support  us as we transform our product line from physical to digital offerings. It is imperative that security be built into the architecture, design, and implementation of the products. You are to work across product development teams to build security into the designs of new products, automate identification of vulnerabilities and strengthen the security of the software development lifecycle.  As a senior member of the team you are to help safeguard clients and in support of business unit financial objectives.

IDEAL CANDIDATE
MUST HAVES:

Must have experience in AWS/Cloud/Cloud Security Certs. 

Technology: Web App Firewall/Cloud Flare/ Imperva/Akamai /do business /attract legitimate users and customers to site. Since publicly available sites; exposing to public attackers. The Firewall legit /malicious traffic)

Keywords: Rapid7 or Qualys on resume

CI/CD- pipeline- If they don't know CI/CD- they won't know how to secure it

DevOps- 2 years of experience- does not warrant to build DevOps but should understand what it does and how pipelines work

CISSP Certified a PLUS!

Anywhere in the United States-100% Agile

Your background:

As a Senior Security Engineer, you have:

Must have 3 years of Security Architecture experience.

Must have hands-on work experience supporting a CI/CD environment.

Must be a team player in Enterprise environment.

Minimum of 2 years of development or DevOps experience.

Minumum of 7 years of Cybersecurity experience.

Hands-on work experience with Dockers, EKS and Kubernetes concepts (should be able to speak to Docker and Kubernetes container security concepts).

Experience with application security testing concepts such as fuzzing, input and output validation testing.

Understanding of how Cloud infrastructure deployments are done with AWS Cloud Formation templates. 

Has exposure to tools such as Rapid7 InsightVM, TrendMicro, Crowdstrike.

Experience with Single Sign On technologies, Access Management, Oauth 2.0, OIDC for APIs and other authentication protocols.

Exposure to Secrets Management solutions such as Cyberark or Hashicorp.

Understanding of cryptographic concepts around hashing, encryption, digital signatures.

Familiar with Application Layer firewalls and WAF such as Palo Alto, Cloudflare, Imperva.

Experience performing Threat Assessment and Risk Assessment.

Understand compliance requirements such as SOX, PCI, NIST, ISO, CIS etc.

Experience with automating security testing.

Clear written and verbal communication skills.

Must have Bachelors Degree in Information Security, Security Management or related field of study.

 

Additional Information

All your information will be kept confidential according to EEO guidelines.