The Cloud Security Operations (Cloud SecOps) team has an immediate opening for an experienced, Security Architect. We are looking for a candidate that brings a mixture of expertise, talent and skill to bear in an effort to foster collaboration, and through iteration, automate and scale SecOps across cloud services business units. The candidate will be responsible for developing technical standards (guardrails) and providing guidance and consultation to our technical peers in the cloud services business units, designing secure, scalable, and reliable solutions in Azure and AWS, and designing, developing, deploying custom, scalable SecOps tools and services.
- Bachelor’s degree in computer science, related field, or equivalent work experience;
- AWS Solutions Architect or MCSE: Cloud Platform and Infrastructure certification required;
- Ability to use a wide variety of open source technologies, tools, and cloud services;
- Experience with automation tools, and specialization in at least one of Chef, Ansible, or Puppet;
- Comfortable with collaboration, open communication and reaching across functional borders;
- Comfortable with frequent, incremental code testing and deployment; and
- Proactively seek opportunities to enhance the functionality, reliability, and operation of the platform.
- 3+ years demonstrable experience in AWS and 2+ years in Azure;
- Working knowledge of security engineering and operations;
- Familiarity with leading security incident response practices;
- Knowledge of Linux and Windows systems administration and architecture;
- Experience developing serverless (e.g. AWS Lambda) or containerized (Docker) microservices architectures;
- Use of source control (Git) and package management tools (npm, pip, etc);
- Proficiency with Python (2 & 3), PowerShell, and Bash (other scripting/dev languages a plus);
- Experienced with data analysis, centralized logging (Splunk, ELK, Rsyslog, etc.);
- Automation guru—if you’re not interested in designing AND developing automation, this role is not for you;
- Develop playbooks for the repeatable deployment of system components, or for performing routine management/deployment tasks; and
- Willingness to answer the phone at 0300 to respond to and handle any security incident that arises.