Senior Staff Cloud Security Engineer (HYBRID)

About The Position

Requirements

• Deep technical expertise in public and private cloud compute infrastructure and cloud native technologies.
• Previous successful projects that iteratively transitioned legacy security models to next generation solutions.
• Deep technical knowledge of security threats, risks, and vulnerabilities within IaaS, PaaS, and SaaS environments and integrations.
• Experience in offensive and defensive security roles, with a strong hacker approach to guiding cloud security decisions.
• Experience communicating and presenting to senior and junior staff with the ability to influence stakeholders.
• Experience in a multi-platform environment with containerized or VM-based Linux and Windows.
• Experience with Container risk monitoring at both build and runtime.
• Experience with solving security control requirements with engineering approaches.
• Ability to excel in a fast-paced, startup-like environment.
• Ability to design, perform experiments, and influence security detection and protection solutions.
• Strong knowledge of industry-standard security tools, frameworks, and best practices including Mitre, CIS and NIST.
• Demonstratable proficiency in common scripting languages with examples of automation at scale.
• Experience working with auditors and demonstrating security controls.
• 8+ years in a security focused role, preferably in the tech industry
• 3+ years of experience with AWS, GCP, Azure, or other cloud providers
• 3+ years in a senior role influencing company direction on security
• 3+ years of experience with top Cloud Identity providers.

Nice To Haves

• Experience applying security controls to exceed third party attestation requirements (PCI, SOC, …).
• Bachelor's or Master's degree in Computer Science or Cybersecurity, or equivalent work experience.
• Third party certifications on end-user computing related technologies.

Responsibilities

• Provide strategic and technical security direction in designing, implementing, and managing secure cloud infrastructures.
• Develop and maintain expertise in cloud-native security solutions, including container security, Kubernetes, Istio, and cloud networking and security services.
• Define and implement roadmaps for security enhancements, ensuring alignment with business objectives and minimal disruption to operations.
• Develop strong relationships with key stakeholders, including development teams, operations teams, and executive sponsors.
• Collaborate with various teams to design, deploy, troubleshoot, and enhance security measures, while balancing usability and security.
• Influence and educate staff at all levels on cloud security best practices, promoting a culture of cloud security awareness across the organization.
• Proactively identify opportunities to enhance security measures, streamline processes, and optimize tooling, leveraging an offensive security mindset.
• Support continuous improvement of our cloud security posture through innovative solutions.
• Mentor/train growing security engineers and provide technical direction and project leadership.

Benefits

• Comprehensive Total Rewards program that offers personalized coverage tailor-made for you and your family's overall well-being.
• Financial benefits including market-competitive compensation; a 401K savings plan vested from day one that offers a 6% match; performance and recognition-based incentives; and tuition assistance.
• Access to additional benefits like mental healthcare as well as fertility and adoption assistance.
• Supports flexibility- We provide workplace flexibility as well as our GEICO Flex program, which offers the ability to work from anywhere in the US for up to four weeks per year.