Remote Senior Cloud Security Engineer

Who we are:

BigID is an innovative tech startup that focuses on solutions for data security, compliance, privacy, and governance. We’re leading the market in all things data: helping our customers reduce risk, drive business innovation, achieve compliance, build customer trust, make better decisions, and get more value from their data.

We are building a global team passionate about innovation and next-gen technology. BigID has been recognized for:

• BigID Named Hot Company in Artificial Intelligence and Machine Learning at the 2024 Global InfoSec Awards
• Citizens JMP Cyber 66 List of Hottest Privately Held Cybersecurity Companies
• CRN 100 list named BIgID as one of the 20 Coolest Identity Access Management And Data Protection Companies Of 2024 (2 years running)
• DUNS 100 Best Tech Companies to Work For in 2024
• Top 3 Big Data and AI Vendors to Watch’ in the 2023 BigDATAwire Readers and Editors Choice Awards.

At BigID, our team is the foundation of our success. Join a people-centric culture that is fast-paced and rewarding: you’ll have the opportunity to work with some of the most talented people in the industry who value innovation, diversity, integrity, and collaboration.

Who we seek:

As a Senior Cloud Security Engineer at BigID, you will be a pivotal member of our security team, responsible for shaping and enhancing the security posture of our cloud infrastructure. Your role encompasses a wide range of responsibilities to ensure the protection and resilience of our critical assets.

What you’ll do:

• Misconfiguration Management: Deeply understand and proactively address potential cloud misconfigurations by developing comprehensive guidance and strategies.
• Access Control Expertise: Lead the development and maintenance of advanced access mechanisms for BigID products, focusing on “Just In Time” and “Self Service” principles to optimize security and efficiency.
• Service & Platform Design: Take a leadership role in the design, deployment, and ongoing maintenance of services and platforms that support our security and engineering teams, ensuring scalability and robustness.
• Infrastructure as Code Mastery: Drive the adoption and utilization of configuration management and “infrastructure as code” practices across all environments for consistency, efficiency, and security.
• Comprehensive Monitoring: Establish and maintain a comprehensive alerting, logging, monitoring, and documentation framework that spans a diverse technology landscape.
• Security Guardrails Architect: Architect and implement robust security guardrails to enforce and automate best practices across our cloud environments.
• Infrastructure Templates: Lead the development and maintenance of “gold” image templates using Terraform, ensuring standardized and secure infrastructure provisioning.
• Container Security Authority: Take charge of deploying, maintaining, and responding to container security tools, including handling alerts and responding to security incidents.
• Security Product Development: Innovate and develop security products and automation solutions to effectively remediate security risks within our AWS environment.
• Cloud Security Protocols: Design and implement comprehensive security protocols to protect our Cloud infrastructure and Kubernetes deployments at scale.
• Incident Escalation: Serve as the primary escalation point for level 2 and 3 security incidents, demonstrating your expertise in incident response.
• Cloud Security Solutions: Collaborate closely with engineering organizations to architect inherently secure cloud architecture solutions.
• Tooling Expertise: Lead the deployment, configuration, and security of security-centric tooling critical to our cloud security strategy.
• Documentation & Policy Governance: Develop and maintain all relevant documentation, policies, standards, and processes, ensuring alignment with evolving business needs and security best practices.
• Security Automation Excellence: Drive the development of advanced security automation workflows to streamline and enhance our security practices.

What you’ll bring:

• Experience with modern programing languages (e.g., Python, Java, Go) and distributed systems
• Deep expertise with one or more major cloud  service providers like Amazon Web Services (AWS), Google Cloud (GCP), Azure
• Expertise in cloud service architecture and cloud security concepts
• Experience with Kubernetes and container security
• Experienced with building tools and services using Golang, Python or other programming languages
• Familiarity with securing and hardening Linux containers/hosts
• Able to write clear, scalable and clear design documentation

Our Values:

We look for people who embody our values - Care, Do,Try & Shine.

• Care - We care about our customers and each other
• Do - We do what it takes to make a positive impact
• Try - We try our best and we don’t give up
• Shine - We shine and make it our mission to always stand out

What’s in it for you?!

Our people are the foundation of our success, and we prioritize offering a wide range of benefits that make our team happier and healthier.

• Equity participation - everyone shares in our success
• Flexible work arrangements
• Other compulsory benefits based on country of residence

#LI-Remote

#LI-AR1

BigDiversity: We’re committed to creating a culture of inclusion, diversity, and equality – across race, gender, sexuality, disability, and neurodiversity – where innovation and growth thrive, every voice is heard, and everybody belongs. Learn more about us here.

CPRA Employee Privacy Notice: CA

BigID is an E-Verify Participant.