We're looking for a Security Engineer – Product to spread the power.
The ideal candidate will have experience performing security reviews, vulnerability management, and detection and response operations in cloud-native environments. Youll get to collaborate with our software development and DevOps teams to secure our products, CI/CD infrastructure, and production infrastructure. Youll also have the opportunity to influence our product roadmap by utilizing to assess, monitor, and harden our environments.
WHAT YOULL DO
Lead threat modeling and security review exercises across our production and CI/CD environments identifying and mitigating risks in our products and the cloud services that support them
Drive vulnerability management and remediation efforts prioritizing issues, implementing mitigations, and designing strategic preventative controls
Extend our detection and response capabilities building scalable solutions to identify malicious activity, triage alerts, and investigate and remediate incidents
Collaborate with our Federal team extending our DevSecOps and Product Security practices to our FedRAMP environment and ensure it meets key security requirements
Build deep functional partnerships with our engineering and operations teams helping them deliver secure-by-design solutions
The ideal candidate will have experience performing security reviews, vulnerability management, and detection and response operations in cloud-native environments. Youll get to collaborate with our software development and DevOps teams to secure our products, CI/CD infrastructure, and production infrastructure. Youll also have the opportunity to influence our product roadmap by utilizing to assess, monitor, and harden our environments.
WHAT YOULL DO
Lead threat modeling and security review exercises across our production and CI/CD environments identifying and mitigating risks in our products and the cloud services that support them
Drive vulnerability management and remediation efforts prioritizing issues, implementing mitigations, and designing strategic preventative controls
Extend our detection and response capabilities building scalable solutions to identify malicious activity, triage alerts, and investigate and remediate incidents
Collaborate with our Federal team extending our DevSecOps and Product Security practices to our FedRAMP environment and ensure it meets key security requirements
Build deep functional partnerships with our engineering and operations teams helping them deliver secure-by-design solutions
Requirements:
5+ years of experience in security engineering or security operations work in cloud environments, with a focus on a combination of the below:
AWS platforms and services (we will also consider equivalent experience in Azure and GCP)
Kubernetes (AWS EKS) and container infrastructure
IAM and managing cloud identities at-scale
Secure development and application of IAC solutions (Terraform, Helm)
Cloud-native observability and management tools
Development experience in Go, Python and Rust
PREFERRED QUALIFICATIONS
Bachelor's degree in computer science or a related field and / or candidates with equivalent job experience in lieu of a degree
Experience working with remote, globally distributed teams
Experience working in organizations that develop software and / or operate managed infrastructure and technology services for their own customers
Experience with CNAPP, CSPM, or CIEM solutions.
5+ years of experience in security engineering or security operations work in cloud environments, with a focus on a combination of the below:
AWS platforms and services (we will also consider equivalent experience in Azure and GCP)
Kubernetes (AWS EKS) and container infrastructure
IAM and managing cloud identities at-scale
Secure development and application of IAC solutions (Terraform, Helm)
Cloud-native observability and management tools
Development experience in Go, Python and Rust
PREFERRED QUALIFICATIONS
Bachelor's degree in computer science or a related field and / or candidates with equivalent job experience in lieu of a degree
Experience working with remote, globally distributed teams
Experience working in organizations that develop software and / or operate managed infrastructure and technology services for their own customers
Experience with CNAPP, CSPM, or CIEM solutions.
This position is open to all candidates.
