Security Operations Engineer (EMEA)

Requirements

• 5+ years previous experience in Sec

  Ops, Dev

  Sec

  Ops, Cloud Security, Threat Detection & Response or software development with a strong focus on security tool onboarding and optimization
,
• You’re a hands-on security engineer interested in automating controls
,
• You have experience in managing cloud platforms (GCP, AWS, Azure, OCI) and Kubernetes environments
,
• Familiiarty with CI/CD systems and SecOps workflows (Git, Terraform) in cloud environments (GCP, AWS, Azure, OCI)
,
• You have experience with one or more of : infrastructure automation, network segmentation, system hardening, container and cloud security concepts, and security observability
,
• You have experience with multiple languages such as Golang and/or Python
,
• You are comfortable with ambiguity and are able to make informed decisions with little data
,
• You employ a flexible and constructive approach when solving problems
,
• You are able to make trade-offs between build vs. buy decisions - help build solutions and able to review what tools are available
,
• You understand secure engineering best practices, can articulate problem statements and propose solutions to both technically savvy and non-technical audiences
,
• If some of the above doesn’t line up perfectly with your experience, we still encourage you to apply!

What the job involves

• Serve as trusted advisor to team’s leadership and partner teams by clearly articulating business risks associated with security issues
,
• Harden our cloud-native environments (AWS, OCI, GCP) by introducing secure by default designs and features into network, tooling, and processes
,
• Own and drive resolutions for enabling engineers to design, build, and use infrastructure securely at scale by deploying secure architectures using infrastructure-as-code and reusable code libraries
,
• Manage IAM / RBAC for cloud infrastructure, and partner with IT on streamling authentication/authorization to ensure unified access control across the board
,
• Deploy and operationalize some of the security services and tools (eg: SIEM, SOAR, domain monitoring, endpoint tooling, cloud security tooling)
,
• Respond to security incidents and harden environments post-incidents
,
• Support control monitoring and remediation for compliance initiatives
,
• Gather and analyze security metrics to address security issues with cross-team dependencies
,
• Be a problem solver who is empathetic to developer concerns and will employ constructive and flexible approach to building innovative solutions