Senior Cloud Security Engineer

$114,048 - $142,560/Yr

Rocket Software - Sacramento, CA

posted 5 months ago

Full-time - Senior
Sacramento, CA
11-50 employees
Publishing Industries

About the position

As a Senior Cloud Security Engineer at Rocket Software, you will play a pivotal role in securing our cloud infrastructure and services, primarily within AWS and Azure environments. This position is part of a global IT organization dedicated to providing world-class service to our software development labs and internal departments. Your primary mission will be to ensure that our employees have secure access and communication systems, enabling them to perform at their highest level. The ideal candidate will possess a strong technical background and will be responsible for the security of company data and workloads in public cloud infrastructure. You will also provide guidance, advice, and reports on your activities, results, and remediation efforts to address cyber risks in the cloud. In this dynamic role, you will monitor, analyze, and resolve security incidents proactively while supporting the security technologies that protect the company. You will have the opportunity to help build a world-class security program in a fast-paced and ever-changing environment. Your responsibilities will include deploying, managing, and maintaining the enterprise cloud security technology stack, utilizing a wide range of security capabilities, and developing incident response playbooks focused on cloud architectures and technologies. You will work closely with the Chief Information Security Officer (CISO) to create a company-wide program for secure cloud services and coordinate with external security partners on critical security workflows. As a key technical member of the cyber response team, you will support the investigation and remediation of cyber events and incidents, participate in red team/blue team/purple team exercises, and analyze cyber threats across enterprise clouds. Additionally, you will protect Rocket's customer and intellectual property data and develop reports detailing your approach, analysis techniques, results, and recommended remediations.

Responsibilities

  • Deploy, manage and maintain the enterprise cloud security technology stack.
  • Utilize a wide range of security capabilities including both native cloud tooling and 3rd party platforms such as CNAPP and CSPM solutions, network detection and response (NDR), vulnerability assessment and discovery, identity and access management (IAM), data protection solutions, key management (KMS), and event logging systems.
  • Develop playbooks for incident response and best practices focused on cloud architectures and technologies.
  • In coordination with the CISO, create a companywide program for secure cloud services.
  • Coordinate with external security partners, such as managed detection and response (MDR) providers on critical security workflows and playbooks.
  • Function as a key technical member of the cyber response team supporting the investigation and remediation of cyber events and incidents, red team/blue team/purple team and enterprise tabletop exercises.
  • Analyze, assess and test for cyber threats across enterprise clouds.
  • Protect Rocket customer and intellectual property (IP) data.
  • Develop and present reports that detail approach, analysis techniques, results and recommended remediations.

Requirements

  • At least 7 years of experience securing public cloud infrastructure in AWS and Azure.
  • Hands-on experience with tools such as Palo Alto Prisma, Wiz, Orca or Lacework.
  • Experience working with secure cloud networking, compute and data workloads, and serverless computing solutions.
  • Experience securing CI/CD cloud delivery pipelines.
  • Knowledge of secure cloud architecture and best practices such as AWS's Well-Architected Framework.
  • Knowledge of cloud incident response and experience with tabletop exercise and red/blue/purple team engagements is highly desirable.
  • Experience with GCP and IBM clouds is desirable.
  • Experience with scripting languages is a plus.
  • Experience providing user guidance, documentation, and consultation.
  • Excellent troubleshooting skills, self-motivated, results-driven and well organized.
  • Experience with explosive growth and variable requirements.
  • Experience with change and incident management processes.
  • Certifications such as AWS Certified Security Specialty or Azure Security Engineer Associate are desirable.

Nice-to-haves

  • Experience with GCP and IBM clouds is desirable.
  • Experience with scripting languages is a plus.
  • Certifications such as AWS Certified Security Specialty or Azure Security Engineer Associate are desirable.

Benefits

  • Extensive paid time off programs (paid holidays, sick, and unlimited vacation time)
  • Healthcare coverage options to fit you (and your family's) needs
  • Retirement savings, with matching contributions by Rocket Software
  • Life and disability coverage
  • Leadership and skills training opportunities
  • Two paid work days for off-site training
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service