SYS ENG-MULTI-DISCIPL - III
Washington Mall Boston, MA 02108
We' re seeking highly technical cloud computing security experts with whom DevOps automation is second nature, to work on enabling a secure foundation for hosting critical workloads in our Multi-Cloud Platforms.
As a member of Cloud Security Engineering you will enable the team in its goals of embracing cloud based technologies across multiple providers (AWS, Oracle OCI, Google GCP, etc.) supporting differing service categories (IaaS, SaaS, PaaS), IT Security team requires security skilled staff to support the demands of the business and to care for our customer base. Our Cloud Security Automation Developers will work with our application developers to bring the most secure cloud platform to bear on their problems through automated, repeatable processes.
While you must be able to communicate effectively with our customers to help them understand security issues and solutions as well as continuous delivery/Cloud concepts, this is very much a hands-on role. You will be expected to be at home creating automated solutions with CloudFormation, Terra Form, Ansible, Jenkins and other DevOps tools. While effective and articulate communication is essential, being able to breathe life into those ideas with code is equally critical. You will be expected to Evolve and strengthen the DevSecOps discipline with Security as Code to implement code based preventive, detective and reactive controls in the Public Cloud to ensure compliance to CPI-810 Policies
Develop Security automation and APIs in the Public Cloud across the key pillars of security namely IAM, CICD Security, Security Logging, Incident Response, Data Protection, Compliance Validation. Security Analytics, Vulnerability Management, Platform and Application Threat Modeling etc. Collaborate with Security Platform and Services Teams to build and integrate existing security solutions.
Become proficient with corporate and industry security requirements Work closely and collaboratively with Information Security Officers (ISOs), IT Portfolios, and Business units to support their needs Act as an advocate of information security policies, standards and as a mechanism to enable the business effectively while managing risk appropriately Manage cloud security vendor products (i.e. Evident.io, Dome9, Redlock.io, etc.) for responsible IT portfolios Manage addition/deletion of cloud accounts, ensuring continuous monitoring User administration Manage vendor(s) to meet the needs of the business Produce scorecards and related metrics
Keep stakeholders updated with communications and weekly reporting. Drive mitigation of reported risks from continuous monitoring solutions
Gain deep security-level knowledge of cloud environments, continuous monitoring solutions to understand and explain security risks and mitigation techniques.
Partner with enterprise teams to establish preventative controls to support compliance via automation. Stay current on cloud security policies, standards, regulations, and best practices Assist in the implementation of a formalized information security awareness offerings Support annual renewal and budgeting needs
Represent the Security Automation team with various stakeholders including App Development, Compliance, Legal, Cloud Engineering to gather requirements, negotiate acceptance of security controls, and influence stakeholders to adopt security controls.
Engage with all levels of leadership to gather requirements, build appropriate cloud security technology roadmaps and implementation plans.
Qualifications: Must have:
Bachelors degree or six or more years of equivalent work experience.
Six or more years of experience in Security or Information Technology.
Two or more years of experience with AWS/Public Cloud (AWS, Google or Oracle Cloud Certified).
Public Cloud Services
Hands-on experience with Security Services in AWS such as IAM, KMS, VPC, Security Groups, AWS Inspector.
Expertise in at least 4 of the 10 security epics across Data Protection, Compliance Validation, Vulnerability Analysis, Network Security, Infrastructure Security, CICD Security, Identity and Access Management, Logging and Monitoring, Incident Response, Big Data and Analytics, and Resiliency.
Hands-on Experience with Management Services such as CloudWatch, Lambda and AWS Config.
Hands-on Experience of Infrastructure and Platform Services such as EC2, RDS etc. Extensive Knowledge and Hands on Skills with Docker, ECS, Kubernetes, and Container
Security Tools. Third party ecosystem tools for compliance and security such as Evident.IO, Dome 9, Trend Micro, Container Security Tools
Agile and DevOps Toolsets Expertise with JIRA
Experience with Test Automation Tools such as Ruby, Server Spec, etc. Expertise with Jenkins, Ansible, Gitlab, Confluence Soft Skills Can Do, Customer Centric Attitude High Collaboration and Influence Skills Willingness to mentor other developers in the team Excels in written and verbal communication skill Ability to communicate technical concepts and complexity to all audiences Tolerant of Ambiguity and Changing Environment Ability to comply with any regulatory requirements
Kaztronix is an equal opportunity employer and does not discriminate on the basis of race, color, national origin, sex, age, religion, disability, veteran status or any other consideration made unlawful by federal, state or local laws.In addition, all human resource actions in such areas as compensation, employee benefits, transfers, layoffs, training and development are to be administered objectively, without regard to race, color, religion, age, sex, national origin, disability, veteran status or any other consideration made unlawful by federal, state or local laws.