Job Summary: We are seeking an experienced Cloud Security Engineer with a strong background in Application Security (AppSec), DevSecOps, Site Reliability Engineering (SRE), Infrastructure as Code (IaC), and Infrastructure as Policy (IaP). The ideal candidate will design, implement, and maintain security protocols across our cloud infrastructure, ensuring secure deployment, automated security compliance, and resilience against evolving cyber threats. You will collaborate closely with development, operations, and security teams to build secure, scalable, and efficient systems within our cloud environments.
Key Responsibilities:
Application Security (AppSec):
Conduct security assessments, code reviews, and threat modeling for applications and cloud services.
Implement security controls and procedures for application lifecycle stages, including development, testing, and deployment.
Collaborate with development teams to ensure secure coding practices and vulnerability remediation.
DevSecOps & Automation:
Integrate security into CI/CD pipelines to ensure automated security checks, vulnerability scanning, and continuous compliance.
Develop and maintain automated security tests, leveraging tools for static and dynamic analysis, container security, and dependency management.
Promote DevSecOps principles and best practices within engineering teams to ensure a security-first approach.
Site Reliability Engineering (SRE):
Work with SRE teams to ensure systems are designed for high availability, scalability, and resilience.
Monitor, troubleshoot, and enhance the security posture of production environments, including incident response and root cause analysis.
Ensure systems meet reliability and security SLAs, implementing monitoring, alerting, and automated remediation for security incidents.
Infrastructure as Code (IaC) & Infrastructure as Policy (IaP):
Design, implement, and maintain secure infrastructure configurations using IaC tools (e.g., Terraform, AWS CloudFormation, Ansible).
Establish Infrastructure as Policy (IaP) practices to enforce security and compliance policies across cloud environments.
Conduct IaC security reviews, implement guardrails, and monitor for drift to maintain compliance with security standards.
Cloud Security Architecture & Best Practices:
Develop and enforce security architecture and best practices for cloud services, focusing on network security, identity and access management, and data protection.
Work with cross-functional teams to enhance security architecture and processes, providing expertise on secure design, risk management, and mitigation strategies.
Stay updated on the latest cloud security trends, tools, and best practices, proactively addressing new vulnerabilities and threats.
Qualifications:
Bachelor's degree in Computer Science, Information Security, or related field (or equivalent experience).
3+ years of experience in cloud security engineering, with strong knowledge of at least one major cloud provider (AWS, Azure, GCP).
Proficiency in AppSec, DevSecOps practices, and site reliability, with experience in secure software development and deployment processes.
Strong knowledge of Infrastructure as Code (IaC) and Infrastructure as Policy (IaP) tools and methodologies.
Hands-on experience with cloud security tools, including but not limited to SIEM, vulnerability scanners, and cloud-native security solutions.
Familiarity with container security, orchestration platforms (Kubernetes, Docker), and secure networking principles.
Relevant certifications (e.g., AWS Certified Security, CISSP, GCP Professional Cloud Security Engineer, Certified Cloud Security Professional) are a plus.
Skills:
Technical Skills: Application security, cloud security, DevSecOps automation, Infrastructure as Code, Infrastructure as Policy.