Remote Senior Cloud Security Engineer

Summary

Join a people-centric culture that is fast-paced and rewarding at BigID, where you'll have the opportunity to work with talented individuals who value innovation, diversity, integrity, and collaboration. As a Senior Cloud Security Engineer, you will be responsible for shaping and enhancing the security posture of our cloud infrastructure.

Requirements

• Experience with modern programing languages (e.g., Python, Java, Go) and distributed systems
• Deep expertise with one or more major cloud service providers like Amazon Web Services (AWS), Google Cloud (GCP), Azure
• Expertise in cloud service architecture and cloud security concepts
• Experience with Kubernetes and container security
• Experienced with building tools and services using Golang, Python or other programming languages
• Familiarity with securing and hardening Linux containers/hosts
• Able to write clear, scalable and clear design documentation

Responsibilities

• Misconfiguration Management: Deeply understand and proactively address potential cloud misconfigurations by developing comprehensive guidance and strategies
• Access Control Expertise: Lead the development and maintenance of advanced access mechanisms for BigID products, focusing on 'Just In Time' and 'Self Service' principles to optimize security and efficiency
• Service & Platform Design: Take a leadership role in the design, deployment, and ongoing maintenance of services and platforms that support our security and engineering teams, ensuring scalability and robustness
• Infrastructure as Code Mastery: Drive the adoption and utilization of configuration management and 'infrastructure as code' practices across all environments for consistency, efficiency, and security
• Comprehensive Monitoring: Establish and maintain a comprehensive alerting, logging, monitoring, and documentation framework that spans a diverse technology landscape
• Security Guardrails Architect: Architect and implement robust security guardrails to enforce and automate best practices across our cloud environments
• Infrastructure Templates: Lead the development and maintenance of 'gold' image templates using Terraform, ensuring standardized and secure infrastructure provisioning
• Container Security Authority: Take charge of deploying, maintaining, and responding to container security tools, including handling alerts and responding to security incidents
• Security Product Development: Innovate and develop security products and automation solutions to effectively remediate security risks within our AWS environment
• Cloud Security Protocols: Design and implement comprehensive security protocols to protect our Cloud infrastructure and Kubernetes deployments at scale
• Incident Escalation: Serve as the primary escalation point for level 2 and 3 security incidents, demonstrating your expertise in incident response
• Cloud Security Solutions: Collaborate closely with engineering organizations to architect inherently secure cloud architecture solutions
• Tooling Expertise: Lead the deployment, configuration, and security of security-centric tooling critical to our cloud security strategy
• Documentation & Policy Governance: Develop and maintain all relevant documentation, policies, standards, and processes, ensuring alignment with evolving business needs and security best practices
• Security Automation Excellence: Drive the development of advanced security automation workflows to streamline and enhance our security practices

Benefits

• Equity participation - everyone shares in our success
• Flexible work arrangements