Senior Security Operations Engineer

Summary

Join Jamf, a company with an open and flexible culture, as a Senior Security Operations Engineer based remotely in Poland. This role focuses on building, automating, and maintaining cloud security services within the Cloud and Delivery team. You will lead security design and architecture, manage identity and access, and handle incident response and vulnerability management. The position requires extensive experience in IT security, Linux/Unix, and configuration management tools. Jamf offers a remote work environment, flexible work-life balance, and various benefits.

Requirements

• Have a minimum of 4 years of experience in IT security principles, security operations, techniques, and technologies
• Have a minimum of 4 years of experience working with Linux/Unix command line interfaces, including shell or python scripting
• Have a minimum of 4 years of experience with industry standard configuration management and deployment tools (e.g. Ansible, Chef, Puppet or other)
• Participate in ongoing security training
• Adhere to established security protocols, handle sensitive data responsibly, and follow data protection practices, including understanding relevant privacy regulations and reporting breaches
• Acknowledge the Jamf Code of Conduct, where applicable security and privacy policies can be found

Responsibilities

• Mentor and advise others in related components and broad fundamental expertise areas
• Manage identity and access control in the cloud environment
• Be responsible for the tools, configuration, administration and related processes around our log file collection and monitoring
• Provide the framework, processes and execution to ensure support of Jamf's data leakage prevention
• Be responsible for Web application firewall and related prevention, detection and mitigation of DDoS attack
• Be accountable for the prevention, detection and mitigation of vulnerabilities through industry standard tools, configuration, administration and internal procedures
• Perform regular firewall audits in line with our procedures. Provide the appropriate documentation, supporting evidence and follow up on identified issues requiring remediation
• Be responsible for tooling, processes and follow up actions related to our external port scanning needs and practices
• Handle the identification, planning and implementation of any server hardening needs
• Work collaboratively with Operations and other internal teams to communicate, document and implement
• Perform security incident analysis, response and remediation
• Participate in design and implementation of security automation workflows
• Help manage security data reporting and visualization platform

Preferred Qualifications

• Have a minimum of 2 years of experience administering some or all of the following technologies: Amazon Web Services (EC2, RDS, DynamoDB, ELB, Elastic Beanstalk, S3, IAM, ElastiCache)
• Have a minimum of 2 years of experience working with monitoring (Logic Monitor, AppDynamics, Zabbix, etc) and logging tools (Splunk, Sumologic, or ELK (ElasticSearch/Logstash/Kibana))
• Have advanced knowledge of containerization concepts and Kubernetes
• Have basic knowledge of MySQL or Postgres
• Have a 4 year / Bachelor's Degree
• Have the following certifications: RHCE (RedHat Certified Engineer), AWS Solutions Architect Associate, AWS Certified Developer Associate, AWS Certified SysOps Associate, AWS Certified Security

Benefits

• Remote work
• Flexible work-life balance
• Home office bonus