Senior Security Engineer, Cloud Infrastructure
Square’s Information Security culture is focused on enabling our engineering teams to build and ship secure products. We achieve this by designing, building, and deploying state of the art security alongside our product and infrastructure teams.
As a Senior Security Engineer, Cloud Infrastructure, you will be responsible for hardening of Square’s cloud computing and cloud network environments. Square is in the early days of migrating existing on-prem services to the cloud. Your work will shape the way we use AWS for years to come.
We’re looking for someone with both a broad knowledge of security and systems, as well as a deep knowledge of how to apply that to AWS. The ideal candidate will have experience across a range of technical disciplines and may have had past jobs such as Information Security (Hardening, Detection/Response, Blue Team, etc) and systems (SRE, SysAdmin, Network Engineer, etc). This is a senior role, and we’re looking for someone who has experience with a wide variety of real-world issues.
- Design and build the security components of the next phase of Squares infrastructure.
- Build security automation for cloud environments.
- Work closely with the infrastructure and product teams who are moving to the cloud, and ensure that they have secure-by-default systems.
- Work in the San Francisco or New York City office. Remote work in the USA or Canada is a possibility depending on experience. Occasional travel may be required.
- 5-10 years total experience in tech.
- You work well cross-functionally, and can communicate with audiences who may not have a security background.
- AWS experience
- At least 2 years of AWS experience.
- Experience implementing AWS security and hardening, especially in a large or complex environment.
- Deep knowledge of AWS IAM and how to configure least-privilege.
- Knowledge of AWS networking and how to securely interconnect multiple AWS accounts, on-prem servers, etc.
- Expertise in automation tools such as Terraform, CloudFormation, Ansible, etc.
- Security experience
- At least 2 years experience working in security (does not need to be on AWS).
- Experience writing code to solve security issues. This could be writing security tools, or automation/management of security-sensitive environments.
- Experience securing Linux systems - hardening, logging/detection, general systems design.
- Networking knowledge, including network security and segmentation.
- Programming in Python and/or Ruby.
- Experience with Kubernetes.
- Google Cloud experience. While most of our cloud infra is AWS, we have a limited GCP footprint.