Cloud Security Engineer

Glassdoor Chicago , IL 60602

Posted 3 months ago

As our company grows and we expand our team, Glassdoor is looking for exceptional Security Engineers specialized in locking down our corporate assets and network. You'll be joining a team where you have real ownership and a charter to champion best practices, drive change and determine future policy and architecture. You'll also contribute to the security domains of application, governance and compliance, incident detection and response, and infrastructure security -- so you'll never end up working in a silo.

You will assess threats and vulnerabilities, analyze data and code, define measurable objectives, and drive implementations of security solutions. You will also be responsible for building and implementing testing tools and methodologies, including manual and automated processes, deployment, and monitoring.

Responsibilities:

  • Design, deploy, manage and improve critical security infrastructure services/tools for authentication and authorization, PKI, secrets management, logging, detection, vulnerability management and more

  • Partner with teams throughout Glassdoor on technology initiatives to improve security and bring standard methodologies to our products and services

  • Analyze the latest attacker techniques and develop approaches to detect them across the company's diverse environments and endpoints.

  • Define, implement, and tune detective capabilities and data sources to detect and remediate malicious activity

  • Work with engineering and operations teams to implement threat detection signals, deploy new tooling, and improve response capabilities.

  • Analyze security data and report on threats and incidents across various platforms and environments.

  • Mentor team members, junior and senior, in state-of-the-art incident response practices

  • Research and design ways to achieve risk reduction objectives in creative ways, including expanding our current tool stack where appropriate

  • Assist with security incidents that the company may face in alignment with our response processes

  • Assess risk arising from third-parties, vendors and partners in our ecosystem and design controls to mitigate such risks

  • Document security processes and standards.

Key Qualifications:

  • 8+ years of experience with security engineering in e-commerce, internet, or social networking settings

  • BS/MS/PhD in Computer Science, Information Systems, Electrical Engineering, or the equivalent in experience and evidence of exceptional ability.

  • Mastery of multiple security domains such as intrusion detection, incident response, malware analysis, and forensics.

  • Strong knowledge of UNIX operating systems

  • Must Have: Hands-on expertise operating in an AWS environment with mastery of architecture and security capabilities in the cloud

  • Advanced programming abilities in Python or similar language

  • Knowledge of web application security, browser security models, and application security vulnerabilities such as the OWASP Top Ten

  • Deep understanding of network attacks, DDoS, Phishing, email protocols/security/spam, encryption, authentication, logging and log analysis, IP and device reputation, and security rules and policies

  • Experience working with multiple stakeholders such as engineering/operations teams, internal business units, external incident response teams, and law enforcement throughout the incident lifecycle.

  • Strong verbal and written communication skills, solid team player, with demonstrated abilities in analysis and problem-solving

Nice To Have:

  • Experience achieving and maintaining compliance with SOC2, NIST 800-53, and other security frameworks

  • Security certifications (CISSP, CEH, etc)

  • Experience with Network Security

  • Experience detecting abuse and large-scale attacks in a diverse environment.

  • Experience with Docker, Kubernetes, and other tools to enhance future operations

  • Database Security

Why Glassdoor?

  • Work with purpose join us in creating transparency for job seekers everywhere

  • Glassdoor gives back! Glassdoor is a Pledge 1% member; all employees receive 3 paid volunteer days per year

  • 100% company paid medical/dental/vision/life coverage; 80% dependent coverage

  • Paid holidays and flexible paid time off

  • Long Term Incentive Plan

  • 401(k) Plan with a Company Match to prepare for your future

  • Located in up-and-coming Fulton Market neighborhood

  • Discounted memberships for local gyms and Divvy

  • Free snacks, drinks, and coffee always available

  • Your choice between Mac or PC

  • Fun office events and celebrations

  • Convenient to public transportation, with pre-tax commuter benefits available

Glassdoor is committed to equal treatment and opportunity in all aspects of recruitment, selection, and employment without regard to gender, race, religion, national origin, ethnicity, disability, gender identity/expression, sexual orientation, age, veteran or military status, or any other category protected under the law. Glassdoor is an equal opportunity employer; committed to a community of inclusion, and an environment free from discrimination, harassment, and retaliation.


icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Cloud Security Engineer

Guidepoint Security

Posted 5 days ago

VIEW JOBS 9/13/2019 12:00:00 AM 2019-12-12T00:00 https://app.jobvite.com//Logo/2628_GPSLogo180x110BLUE_1473358962350_Company.jpg" alt="No Image" /> GuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk. By taking a three-tiered, holistic approach for evaluating security posture and ecosystems, GuidePoint enables some of the nation's top organizations, such as Fortune 500 companies and U.S. government agencies, to identify threats, optimize resources and integrate best-fit solutions that mitigate risk. GuidePoint Security's Cloud Security Team is looking to add a cloud security engineer with experience in solving enterprise multi-cloud security challenges. Cloud Security Engineers on our team help solve architectural and engineering problems for clients cloud environments and migration efforts . We're looking for a security architect that is looking for an opportunity to maintain hands-on experience across AWS, Azure, and GCP. Role and Responsibilities: * Conduct cloud security assessments using industry standards and GuidePoint's Cloud Security Architecture Framework * Develop cloud-native solutions using Terraform, Azure Resource Manager, Azure Policy, Cloudformation, AWS Policies (SCPs, IAM, Bucket) * Build deployment pipelines for infrastructure-as-code environments leveraging Azure DevOps, CodeDeploy, Jenkins, Octopus Deploy, and more * Identify security gaps and secure cloud container environments for AKS, EKS, ECS, Fargate, GKE, Lambda, and Azure Functions * Research and implement new cloud services and delivery patterns * Research and document cloud security best practices * Build custom cloud security solutions to grow GuidePoint's cloud solution assets Preferred Requirements: * 4+ years of experience with a major cloud service provider * 4+ years building CI/CD solutions such as Azure DevOps or Jenkins * 2+ years with Terraform, ARM, or Cloudformation * Knowledge of web application architecture, i.e. web development, enterprise applications Why GuidePoint? GuidePoint Security is a rapidly growing, profitable, privately-held value added reseller that focuses exclusively on Information Security. Since its inception in 2011, GuidePoint has grown to over 300 employees, established strategic partnerships with leading security vendors, and serves as a trusted advisor to more than 1,000 clients. Firmly-defined core values drive all aspects of the business, which have been paramount to the company's success and establishment of an enjoyable workplace atmosphere. At GuidePoint, your colleagues are knowledgeable, skilled, and experienced and will seek to collaborate and provide mentorship and guidance at every opportunity. This is a unique and rare opportunity to grow your career along with one of the fastest growing companies in the nation. Some added perks…. * MacBook Air or Pro * Healthy mobile phone and home internet allowance * 100% employer-paid medical and dental with generous employer family contributions * Eligibility for retirement plan after 2 months at open enrollment Equal Opportunity Employer GuidePoint Security, LLC is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, disability status, marital status, sexual orientation, gender identity, genetic information, protected veteran status, or any other characteristic protected by law. In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification document form upon hire. Guidepoint Security Chicago IL

Cloud Security Engineer

Glassdoor