Remote IT Cloud Security Engineer I Job in United States The Mom Project

Who you are

• Bachelor's degree in Computer Science, or equivalent
• Minimum of 5 years of related work experience
• Strong oral and written communication skills in the English language
• Proven track record of building CI/CD pipelines for both application and infrastructure, with a focus on security
• Expert knowledge of Cloud Native Engineering (GCP preferred)
• Experience in cloud security
• Excellent hands-on experience with securing containers at scale
• Supply chain protection experience
• Hands-on experience developing and deploying applications in a containerized environment
• Mastery of automation tools (e.g., Concourse, Jenkins, Terraform, Ansible etc.)
• GitHub Actions experience
• Hands-on experience developing, deploying and maintaining automation using automated tooling using Python, Go, or similar
• Comfort with automated, frequent, incremental code testing and deployment as part of a set of mature DevOps practices
• Expert knowledge of both Windows server operating system
• Expertise with one or more various Linux operating systems

What the job involves

• Design and implement security automation into existing systems using a combination of Python, Bash, and CI/CD tooling
• Design and integrate automated security controls, such as SAST, SCA, etc. into an existing, customized SDLC
• Work across functional teams to gather requirements and propose technical solutions
• Work across teams to enforce security controls consistently and reduce existing security debt
• Direct application teams with onboarding the cloud security requirements and working with vendors to troubleshoot the platform and issues related to such integrations
• Leverage automated process to mitigate security vulnerabilities in the environment by working with the Application Security team to triage security vulnerabilities
• Contribute to security requirements across cloud applications, provide guidance for cloud security and automation, and ensure that logical security controls are manageable and scalable
• Stay abreast of industry trends and best practices; conduct research, tests, and execute new techniques that can be reused and applied to SDLC