Job DescriptionDo you thrive in a startup vibe? Were you built for a small, nimble and dynamic team thats ready to win? If you answered yes, we want to talk to you! We are now going back to our roots as a standalone business unit to focus on our SaaS businessan area where we see growth potential. This business unit is unique, and we certainly arent afraid to stand out from the crowd and tackle the bigger competitors.We are seeking a highly skilled and motivated Senior Manager of Security to join our dynamic team at ShareFile, a leading SaaS company operating on the AWS platform.
Are you a seasoned Cloud Security Engineer passionate about ensuring the resilience of cloud environments and bolstering product security? Are you interested in guiding a team of skilled engineers and influencing the direction of cloud security and product security tooling? We're seeking a Lead Cloud Security Engineer who brings a wealth of technical expertise, from mastering AWS intricacies to enhancing container security practices, driving policy as code requirements, implementing tooling for product security, and all while thinking and working with modern software engineering practices. All this, while fostering a culture of collaboration and growth.
Your Role: Defining a Secure Cloud Landscape
As the Lead Cloud Security Engineer, you'll spearhead our cloud security efforts, placing emphasis on AWS proficiency, reinforcing container security protocols, enhancing API and software security measures, and integrating policy as code requirements for compliance and automation. Additionally, you'll play a crucial role in implementing and managing tooling for product security, all the while thinking and working with modern software engineering practices. Your insights into strategic security approaches will be put to the test through real-world simulations, ensuring that our cloud infrastructure remains steadfast in the face of evolving challenges. In addition, you'll lead the integration of policy as code requirements to ensure compliance and security automation. You'll also play a vital role in nurturing a team, guiding their development, and inspiring innovative problem-solving.
Key Responsibilities: Guiding Your Expertise
- Mastery of Cloud Security: Lead the development of tailored security strategies for our AWS environments, implementing robust security measures that prioritize safeguarding.
- Container Security Enhancement: Delve into the nuances of container and microservices security, strengthening the defenses of technologies like Docker and Kubernetes.
- Network Resilience: Your proficiency extends to network security, designing architectures that not only mitigate risks but anticipate them.
- Security Testing and Response: Lead simulated attack and response exercises, refining our defense mechanisms through red and blue team activities.
- API and Software Vigilance: Elevate the security of our APIs and software systems, contributing to code assessments that bolster resilience against potential vulnerabilities.
- Policy as Code Integration: Implement policy as code requirements, ensuring cloud infrastructure compliance and security automation.
- Product Security Tooling: Implement and manage tooling for product security, ensuring secure development practices across our offerings, while leveraging modern software engineering practices.
- Modern Software Engineering: Apply contemporary software engineering practices to your role, promoting efficient workflows, automation, and collaborative development.
- Team Leadership: More than just a leader, you'll serve as a mentor, fostering a culture of teamwork, inquisitiveness, and innovative problem-solving.
Qualifications: Your Journey to Excellence
- Educational Foundation: Armed with a Bachelor's degree in Computer Science, Information Security, or related fields. A Master's degree would undoubtedly enhance your qualifications.
- AWS Expertise: Your mastery of AWS is evident through a history of successfully securing cloud environments.
- Container Acumen: Immerse yourself in container technology; your grasp of Docker, Kubernetes, and container security is unwavering.
- Network Insight: Your expertise extends to networking protocols, architecture, and security principles.
- Incident Handling: Navigate through security incidents adeptly, honed through your involvement in red and blue team engagements.
- API and Software Focus: Your skill in assessing API and software security ensures that code reviews adhere to security standards.
- Policy as Code Experience: Familiarity with implementing policy as code requirements using tools such as Terraform or CloudFormation.
- Product Security Tooling: Experience with implementing and managing tools for product security, enabling secure development practices.
- Modern Software Engineering Skills: Proficiency in leveraging modern software engineering practices, fostering efficient development and collaboration.
- Leadership Experience: You possess a history of leading and mentoring security engineering teams, ideally supported by certifications like AWS Certified Security - Specialty and CISSP.
If you are a dedicated and experienced security professional with a passion for leading security initiatives in a fast-paced SaaS environment with a focus on automation, infrastructure, and policy as code methodologies, we encourage you to apply. Join our team and help us ensure the security, compliance, and privacy of our cutting-edge cloud-based services.
Cloud Software Group is firmly committed to Equal Employment Opportunity (EEO) and to compliance with all federal, state and local laws that prohibit employment discrimination on the basis of age, race, color, gender, sexual orientation, gender identity, ethnicity, national origin, citizenship, religion, genetic carrier status, disability, pregnancy, childbirth or related medical conditions, marital status, protected veteran status, and other protected classifications.