Hello, Hope you are doing good.
We have an immediate opening for the below position, kindly let me know your interest with your updated resume at *[email protected] <[email protected]>*. *Skill Set* *Is Remote Ok* *JD* Cloud Security Engineer (80% AWS, 20% GCP) Remote is Ok To drive forward securing our Cloud environments (80% AWS, 20% GCP) and using industry leading security tools/services with regards to towards ‘security by design’ / ‘security as code’ / 'Shifting Left’ to help from a DevOps to a DevSecOps culture. The role sits within the infosec team which is part of the larger R&D Tech function who work at scale, pace and with the latest architecture patterns and tech. We have a flat and open engineering culture where data, & evidence beats opinion and hierarchy, backed by honest and frank discussions. We passionately believe in forming autonomous, cross functional teams who are empowered to deliver our ambitious strategy. Working with AWS & GCP Cloud-native security tooling such as GuardDuty, Security Hub, GCP Security Command Center to ensure a level of protection & monitoring of threats in Auctane Public Cloud envs. Carrying out Cloud Security guidance, awareness and security reviews for our Engineering Teams to help develop the automation of security and compliance capabilities in support of DevOps processes (SDLC) Performing regular security reviews, vulnerability, risk assessments and audits utilising our CSMP tool Wiz. Building relationships with all staff to promote “Security by Design” throughout the Engineering Teams and wider business. Being part of the internal Infosec / cyber security incident process - investigate suspected attacks and help manage security incidents, including providing post-mortem analysis, identify causes, develop solutions and preventive measures Responding swiftly to new and emerging security threats and vulnerabilities, investigate suspected attacks and be an integral part of the Information security incident process What key skills and experience do I need? As a trusted technical authority within Security engineering for Cloud Security who can demonstrate and apply the following; Detailed technical knowledge of vulnerabilities, threats, attack methods and infection vectors with Cloud Environments. Hands on experience with a Cloud Security Posture Management (CSPM) tool. Solid understanding of AWS security tools (Security Hub, GuardDuty and Detective) and GCP Security tools (Google Cloud Armor, Event Threat Detection) Ability to visualise the security posture of our AWS & GCP environment and prioritisation of associated risks. Able to review basic HashiCorp Terraform Syntax and advise engineering teams on how to secure and deploy their Terraform code. Experience of running “Threat Modelling” for teams and products with reference to secure engineering principles, and standards (eg OWASP\CIS\NIST) Able to balance the demands of delivering high quality and demanding timescales. Hold yourself accountable to delivering on your commitments. Your every action demonstrates that collaboration is the best way to deliver awesome products It would be great if you also could bring Knowledge of automated tools to secure infrastructure as code: Cloud Custodian Experience of using automation to solve complex problems General development knowledge: Of a typical pipeline build (Jenkins or TeamCity) and therefore can advise teams on how to implement steps to automate security tools A desire to constantly challenge the norm *Bharat Chhibber | Sr. Technical Recruiter* *Direct: 919 626 9615 | EMAIL [email protected] <[email protected]>* -- You received this message because you are subscribed to the Google Groups "Android Discuss" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/android-discuss/CAEmgVe2bqdoWz2AX4BJPq4EA4-mAgE9Zm-TS8J0iiOjdM7fBxQ%40mail.gmail.com.
