Cloud Security Architect

Summary

Join Rubrik's Information Security organization as a Cloud Security Architect to design and implement secure cloud infrastructure. Partner with engineering and development teams to build secure systems and processes. Analyze and mitigate threats and vulnerabilities within FedRAMP and IL4+ environments. Conduct security impact analyses and support incident response. This role requires extensive experience in cloud security, application development, and security policy. U.S. citizenship and residence within the contiguous U.S. are required. The position offers competitive salary, bonus potential, equity, and benefits.

Requirements

• Bachelor’s degree required; BS or MS in Computer Science, Information Technology, or a related field
• 15 years of experience including cloud technologies, technical architecture and application development
• 8+ years experience in cloud security, with experience across AWS, GCP and/or Azure infrastructure design
• 2+ years experience in VMWare and/or Network security modeling
• Broad knowledge of private and public cloud attack vectors and exploits
• Subject matter expertise in CI/CD, Cloud APIs and Identity management
• Deep understanding of compute, network and storage technologies in AWS, GCP and/or Azure
• Programming experience in Python, Go or Java
• Deep security policy subject matter expertise in at least one major public cloud provider (AWS, GCP, Azure)
• Experience with deploying and securing SaaS applications and cloud environments at scale
• Working experience with CI/CD pipeline, containerization (Kubernetes, Docker, etc) and MicroServices
• Knowledge of of IaC (Infrastructure as Code) concepts and implementing standards within them
• Understanding of cloud security maturity model frameworks and how to apply them
• Strong written and verbal communication skills
• U.S. citizenship at the time of hire
• Residence within the contiguous United States (i.e., the lower 48 states and the District of Columbia)
• Willingness to undergo a Single Source Background Investigation if required

Responsibilities

• Partner with engineering teams across Rubrik to create secure cloud infrastructure design and deployment architectures utilizing threat models and risk analysis documentation specific to a FedRAMP and IL4+ environment
• Work with development teams, operations, governance, and other stakeholders to draft security standards and controls and implement monitoring, alerting and governance to adhere to those specifications
• Support incident responders in analyzing applicable threats, vulnerabilities, controls and residual risks inside and out of the FedRAMP boundary
• Analyze and harden existing applications, infrastructure, automation, and deployment processes partnering with multiple teams to design & implement solutions within the space
• Execute Security impact Analysis reviews for all FedRAMP changes coming in to the change management process
• Know, acknowledge, and follow system-specific security policies and procedures
• Protect data and individual privacy per requirements and regulations
• Perform ongoing activities in compliance with service and contractual obligations
• Participate in role-based training, completing assignments on a timely basis
• Report security issues promptly, and aid investigation when needed
• Support controlled changes and vulnerability remediation activities
• Work collaboratively with Information Security in designing, implementing, assessing or enhancing system-specific security and privacy controls

Benefits

• Bonus potential
• Equity
• Benefits