Key skills
AnsibleAWSAzureCloudGoogle Cloud PlatformJavaJavaScriptJenkinsKubernetesMicroservicesPythonSplunkTerraformTypeScriptVaultGoAnalyticsGCPGoogle CloudGitHub ActionsGitLab CIServerlessHelmCloudFormationGitHubGitLabCI/CDCloud Security
About this role
Role Overview
- Develop, deploy, and support self-service security tools and services that constitute the internal security platform.
- Contribute knowledge and support for security projects, including support of tool integration and implementation of new security capabilities within the platform.
- Support & improve security integrations into CI/CD pipelines (SAST, DAST, SCA, IAST, etc.) and developer workflows.
- Maintain deployment of secure multi-cloud environments (AWS, Azure, GCP) using Infrastructure as Code (e.g., Terraform, Ansible).
- Assist with security architecture reviews of new products and features, contribute to threat models, and support adoption of security-as-code best practices.
- Work with the Site Reliability Engineering (SRE) team to maintain & respond to automated monitoring and security integrations for production systems.
- Collaborate with internal security teams to support compliance, incident response, and operational security requirements.
- Enable and support the adoption of security engineering best practices and standards across the organization.
- Evangelize the use of security platform tooling and deliver high-impact DevSecOps training and outreach to internal development & engineering teams.
- Participate members of the Security team and security advocates in advanced DevSecOps principles, platform engineering, and secure coding practices.
Requirements
- Experience developing, deploying, or supporting security tools and services (e.g., security scanners, secrets management, policy engines) used by other engineering & security teams.
- Knowledge of DevSecOps principles and practical experience implementing security controls in CI/CD pipelines (e.g., Jenkins, GitLab CI, GitHub Actions).
- Experience with large-scale cloud security engineering in AWS, Azure, and Google Cloud, including automated network provisioning and secure configuration management.
- Experience with code review of one or more programming languages (Java, Python, Go, JS/TS).
- Knowledge or experience in Kubernetes operations, security, and using tools like Helm for deployment and policy enforcement.
- Experience using and supporting Infrastructure as Code (IaC) & configuration management tools like Terraform, Cloudformation, or Ansible.
- Experience with operating or supporting security tools and platforms, including HashiCorp Vault for secrets management, Splunk for security monitoring and analytics, and CrowdStrike or similar EDR solutions for endpoint security.
- Working knowledge of web service frameworks, distributed architectures (event-driven, microservices, serverless), and their corresponding security challenges.
- Experience performing security reviews, developing and reviewing threat models, and conducting risk assessments against complex systems.
- Security certifications (CISSP, SSCP, Security+, etc.) are a bonus but not required.
- Familiarity with Cloudera’s products or other distributed computing systems is a strong bonus, or a willingness to dig into our products to truly understand how they work.
Tech Stack
- Ansible
- AWS
- Azure
- Cloud
- Google Cloud Platform
- Java
- JavaScript
- Jenkins
- Kubernetes
- Microservices
- Python
- Splunk
- Terraform
- TypeScript
- Vault
- Go
Benefits
- Generous PTO Policy
- Support work life balance with Unplugged Days
- Flexible WFH Policy
- Mental & Physical Wellness programs
- Phone and Internet Reimbursement program
- Access to Continued Career Development
- Comprehensive Benefits and Competitive Packages
- Paid Volunteer Time
- Employee Resource Groups