Senior Cloud Security Engineer

$180,000 - $210,000/Yr

Fortinet - Sunnyvale, CA

posted 4 months ago

Full-time - Senior
Sunnyvale, CA
10,001+ employees
Publishing Industries

About the position

Fortinet is seeking a highly skilled Senior Cloud Security Engineer to join our Corporate Information Security team. This role is pivotal in ensuring the security and compliance of our cloud assets, as well as responding to cyber security incidents. The ideal candidate will have a strong technical background and will be responsible for designing, implementing, maintaining, and monitoring security measures for our cloud infrastructure. This position is open to candidates located in Sunnyvale, CA or Chicago, IL, and requires a proactive approach to cloud security and privacy advocacy. In this role, you will develop strategies and evaluate solutions to ensure that security and privacy are integrated into Fortinet's cloud assets. You will monitor the security and compliance of our cloud systems and networks, actively participating in the response to and investigation of cyber security incidents. Engaging with system owners, you will provide expert guidance on the design, architecture, and implementation of secure applications and services hosted in both private and public clouds is essential. As part of a global distributed team, you will share knowledge, workload, and assignments, fostering a strong sense of teamwork. You will also coach peers in cloud security technologies and best practices. Supporting internal and external audit and compliance activities, such as SOX, ISO 27001, and SOC 2, will be part of your responsibilities. Additionally, you will collaborate with other information security and IT staff to conduct risk and vulnerability assessments, penetration testing, and threat hunting exercises to identify and remediate security weaknesses.

Responsibilities

  • Develop strategies, evaluate solutions, design and implement tools, processes and controls to ensure that security and privacy are designed in Fortinet cloud assets.
  • Monitor the security and compliance of cloud systems and networks and actively participate in responding to and investigating cyber security incidents.
  • Engage system owners and provide expert guidance on the design, architecture and implementation of solutions to secure applications and services hosted in private and public clouds.
  • Drive the implementation of Fortinet cloud security solutions.
  • Be part of a global distributed team to share knowledge, workload and assignments, requiring a strong sense of teamwork.
  • Coach peers in cloud security technologies and best practices.
  • Support internal and external audit and compliance activities (e.g. SOX, ISO 27001, SOC 2, etc.).
  • Work with other information security and IT staff to conduct risk and vulnerability assessments, penetration testing, and threat hunting exercises to anticipate and remediate security weaknesses.

Requirements

  • Ten or more years of combined experience in network and systems administration, cloud engineering, operations and security roles.
  • Solid knowledge and proven experience architecting and securing one or more of the most popular public cloud environments (AWS, Azure, GCP).
  • Experience and functional knowledge of Firewalls, Switches/Routers, and Network/System Intrusion Detection or Prevention Systems (IDS/IPS), WAF, anti-malware/virus, active directory, vulnerability assessment tools and other security tools found in large enterprise networks.
  • Strong security skills including understanding of information security technologies (Firewalls, WAF, IDS/IPS, SIEM, DNS, VPNs, etc.) and associated protocols and standards. Proven hands-on experience with products from top security vendors.
  • Experience with Fortinet products is an advantage. DevOps/SecOps experience is a plus.
  • Experience working in a Computer Security Incident Response Team (CSIRT) or Security Operations Center (SOC) preferred.
  • Programming/scripting skills (e.g. Python, Java, Go, Rust, shell scripts, PowerShell, CLI, bash, PERL, etc.) and hands-on Linux experience.
  • Familiarity with legal and regulatory requirements, data security standards and frameworks such as ISO 27001/27002, NIST, PCI, HIPAA, SOX.
  • Demonstrate strong communications, analytical, problem solving, and decision-making skills that can contribute towards the resolution of any issue that arises.

Benefits

  • Medical insurance
  • Dental insurance
  • Vision insurance
  • Life insurance
  • Disability insurance
  • 401(k) plan
  • 11 paid holidays
  • Vacation time
  • Sick time
  • Comprehensive leave program
  • Equity program
  • Bonus eligibility reviewed at time of hire and annually

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service