Staff Security Engineer

About The Position

Requirements

• 10+ years of experience as a security engineer or in a similar role.
• Demonstrated expertise in implementing AWS security services and adhering to best practices (Cloudtrail, GuardDuty, Cloudwatch).
• Prior experience implementing and managing a zero-trust network access solution to support least privilege access provisioning.
• Understanding and modeling all aspects of security within a system architecture, with the ability to identify both good and bad security design.
• Strong understanding of several operating systems and network security best practices.
• Demonstrated experience with container security operations using open source or market leading CSPM solutions.
• Demonstrated experience leveraging infrastructure as code with tools such as Terraform or Ansible.
• Experience with identity management protocols (e.g., OAuth, SAML, OpenID Connect).
• Demonstrated ability to develop and comprehend code in one or more programming languages, including Python, Java, or Go.
• Relevant certifications such as OSCP, SSCP, or GSEC.
• Experience in designing and/or implementing a release management pipeline.
• Able to identify what a good release pipeline looks like (the stages, what they do, why they are there).
• Experience integrating pipeline tooling with one another either natively or via custom code.

Responsibilities

• Develop, implement, and uphold secure architecture for product and enterprise environments, including on-premises, cloud, and containerless environments.
• Responsible for implementation of the DevSecOps strategy with a significant emphasis on developing and assessing security tools.
• Develop and implement customized detection mechanisms using various SaaS and cloud technologies to identify malicious behavior.
• Manage security and infrastructure configurations by leveraging Infrastructure-As-Code tools such as Terraform.
• Consistently contribute to and enhance security coding programs that support immutable and version-controlled environments through the utilization of infrastructure as code, detection as code, and other engineering-driven security initiatives.
• Responsible for investigation, remediation and root cause analysis of security escalations from MSSP, CSPM, SIEM and other notification mechanisms.
• Participate in an on-call rotation to provide 24/7 support for incident escalations.

Benefits

• Salary range of $164,160 to $205,200, which represents base pay only and does not include short-term or long-term incentive compensation.