Key skills
DetectionResponseInformation SecurityAWS ArchitectureAWS Security ServicesInfrastructure as CodeTerraformAWS CloudFormationSecurity AutomationPythonTypeScriptGoNetwork SecurityEncryption TechnologiesSecure Coding PracticesSIEM ManagementAWSCloudFormationLeadershipCommunication
About this role
Cape is a company founded by experts in privacy and national security, aiming to create a privacy-centric cellular network. They are looking for a seasoned Security Engineer specializing in detection and response to design and implement security measures that comply with regulatory standards and minimize data security risks.
Responsibilities:
- Design, implement, and manage robust security controls and policies across the business, enhancing our detection and response capabilities
- Assist in addressing findings from automation and tooling, ensuring prompt and effective response and remediation
- Run and manage detection tooling and automation across the organization
- Stay informed about the latest security threats, vulnerabilities, and compliance mandates affecting cloud environments, providing guidance on emerging technologies and security best practices
- Offer expert guidance and mentorship to junior security team members and employees across the company, fostering an organizational culture of security awareness and continuous improvement
- Collaborate with stakeholders to integrate security requirements effectively into IT projects and business initiatives
Requirements:
- Design, implement, and manage robust security controls and policies across the business, enhancing our detection and response capabilities
- Assist in addressing findings from automation and tooling, ensuring prompt and effective response and remediation
- Run and manage detection tooling and automation across the organization
- Stay informed about the latest security threats, vulnerabilities, and compliance mandates affecting cloud environments, providing guidance on emerging technologies and security best practices
- Offer expert guidance and mentorship to junior security team members and employees across the company, fostering an organizational culture of security awareness and continuous improvement
- Collaborate with stakeholders to integrate security requirements effectively into IT projects and business initiatives
- Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent experience), with advanced degrees or certifications (e.g., CISSP, AWS Certified Security Specialty) being advantageous
- A minimum of 7 years of experience in information security, with at least 3 years concentrated on detection and response
- Deep understanding of AWS architecture, security services, and best practices for securing cloud applications and data
- Proficiency in using infrastructure as code (IaC) tools (like Terraform or AWS CloudFormation) and in automating security tasks within AWS
- Skilled in scripting languages (Python, TypeScript, Go) for the automation of security tasks and the integration of security tools
- Solid knowledge of network security, encryption technologies, and secure coding practices
- Excellent analytical skills for identifying and mitigating complex security vulnerabilities and risks
- Strong communication and leadership abilities, capable of working collaboratively across teams and effectively conveying technical information to non-technical stakeholders
- Organized and able to manage multiple priorities in a dynamic, fast-paced environment