Key skills
PythonBashAWSGCPTerraformCI/CDNetwork SecurityCloud Security
About this role
Jotform is a powerful online forms platform that helps organizations streamline workflows and capture better data. They are seeking a Senior Cloud Security Engineer to enhance their infrastructure security by developing security tooling, implementing best practices, and maintaining secure system baselines across a multi-cloud environment.
Responsibilities:
- Designing, scaling, and deploying various cloud security controls and services across AWS and GCP using a combination of cloud platform native and open source tools and SIEM integration. Create actionable output for the SecOps team
- Design and build process automation solutions to ensure systems meet security benchmarks (e.g., CIS) and satisfy operational compliance requirements
- Demonstrate strong knowledge of NIST 800-53 security controls and apply that expertise to support FedRAMP/GovRAMP compliance efforts, translating requirements into effective and actionable security measures
- Build and maintain secure, hardened operating system images, primarily in Linux. Design and implement monitoring controls for Linux systems
- Analyze infrastructure security findings and vulnerabilities. Partner with DevOps and other teams to mitigate findings and create security solutions
- Recommend new security solutions and tooling as necessary to bring security posture to the next level
- Collaborate with other members of the Security Team on other tasks as required
Requirements:
- US citizenship required for federal security requirements
- 5+ years of experience with infrastructure, with a heavy focus on cloud security
- Proven expertise in either AWS or GCP required
- Utilizing infrastructure-as-code solutions such as Terraform is highly desirable
- 2+ years of hands-on automated script design, coding, debugging, and maintenance skills (using Bash & Python)
- A good practical knowledge of security technologies and wider business solutions including Firewalls, IDS/IPS, Identity and access management, SIEM, Data Loss Protection, BCP, network security in a cloud-first setting
- The ability to use a wide variety of technologies, including CI/CD tools, infrastructure automation, code repositories, and security vulnerability identification tools to support our cloud infrastructure
- Experience with infrastructure hardening standards, performing infrastructure as code scanning, vulnerability management and threat hunting
- Ability to work cross functionally across Developers, DevOps, and Engineering teams in a dynamic environment to promote/implement a strong security program
- Passionately strive towards automating everything