Skip to main content

This job has expired

Senior AWS Cloud Security Engineer

Employer
rewardStyle
Location
Homeworking
Closing date
15 Apr 2021

View more

Function
Technology
Level
Senior Manager
Send job

Job Details

Title:Sr. AWS Cloud Security Engineer

Location: This is a fully remote position. If you are located near one of our rewardStyle offices, come have a coffee when you want to socialize!

Reports to: CISO

Job Purpose:rewardStyle DevSecOps Team will be composed of security experts that adhere to the principles of DevSecOps. RewardStyle DevSecOps team will deliver a range of services including security engineering, architecture, automation, configuration management, monitoring and alerting, enterprise infrastructure administration.

Key Responsibilities:
  • Own and lead infrastructure security monitoring and detection and response for rewardStyle, ensuring the infrastructure is appropriately designed and configured to monitor and alert for suspicious activity, particularly as new products/features are designed and released
  • Partner hand-in-hand with our Infrastructure/DevOps team to build the deployment guardrails; in order to gain high assurance on the assets living in our cloud.
  • Create design patterns for effective logging & monitoring, alert detection, and automated incident response
  • Proactively performing security assessments to prevent security vulnerabilities
  • Actively participate in the overall strategic planning of the Security team to identify and implement modern and effective security architectures, standards, and related tools & technologies
  • Experience working in a DevSecOps environment, and familiarity with source code control and CI/CD pipelines and related systems
  • Collection, management, and analysis of performance data
  • Foster a strong team culture by mentoring junior security engineers
  • Be a security thought leader for the organization
  • Conducting security-focused training and hackathons to raise developer awareness of security best practice

Requirements
  • Minimum 5+ years of experience design or building cybersecurity infrastructure services in AWS Cloud., e.g. vulnerability management, incident response, data protection, SIEM, etc.
  • Minimum 3+ years of progressive experience within a software security team or similar operating environment with an in-depth understanding of application security assessment methodologies
  • Excellent skills effectively articulating security requirements, both in highly technical terms and in business terms, using a balanced risk approach
  • Strong interpersonal skills including mentoring, coaching, collaborating, and team building
  • Ability to both work closely with software developers and management teams
  • Openness to share knowledge and teach others the DevSecOps philosophy
  • Strong background in ECS, Lamda, Cloudformation
  • Experience with Version Control systems - Git.
  • Ability to interact professionally with a diverse group, executives, managers, and subject matter experts
  • Hands-on experience working with services and tools such as IAM, SecurityHub, GuardDuty, Inspector CloudTrail, CloudWatch, Shield, WAF, KMS, ACM, Secrets Manager, Lambda, CloudWatch, PagerDuty, Slack, CloudCustodian
  • Familiarity with DevOps, CI/CD, and agile methodology.
  • Experience with JSON, YAML, CloudFormation a plus
  • Will collaborate with various teams to assess threats, develop appropriate countermeasures, and in the event of unauthorized activity respond to it.
  • Define and develop preventive guardrails, detective controls, and automated alerts and remediation to ensure IAM implementation in all cloud environments are compliant with rS' cloud security standards and policies.
  • Experience with integrating static and dynamic scanners in the S-SDLC
  • Automates every day and/or repeatable tasks, including security control enforcement

Technical / Educational Requirements
  • We value experience over a degree
  • AWS certifications a plus
  • CISSP, OSCP, GIAC, and or AWS Certified Security Specialty a plus

Additional Desired Skills
  • Hands-on knowledge of information security technologies such as security design review, threat modeling, secure code review, risk analysis, and penetration testing
  • Experience with multiple programming languages (such as Java, Go, Python, Bash, etc.)
  • Experience in driving large, cross-organization initiatives
  • Strong information security risk-based prioritization abilities
  • Experience with mobile application security a plus
  • Knowledge of NIST, ISO 27001, and or GDPR/CCPA
  • Strong understanding of the OWASP Top 10 rules and MITRE ATT@CK Framework
  • Excellent written communication skills, with a focus on translating technically complex issues into simple, easy to understand concepts

Company

Influencer Marketing is a rapidly growing space at the intersection of social media, advertising, and eCommerce. As the creator of this space, rewardStyle and LIKEtoKNOW.it offer the world's premier lifestyle influencers the ability to start their own business. Our technology platform provides them the tools, strategies, and support they need.

We run nearly $2B of retail sales per year through the rewardStyle platform, and the LIKEtoKNOW.it consumer app has more than 1.5M monthly active consumers connecting directly with our network of nearly 100k+ influencers and spending nearly $2B annually.  We are expanding rapidly and have tremendous growth ahead.  We seek exceptional problem-solvers to join our growing team.

Company info
Website
Telephone
9728835876
Location
3102 Oak Lawn Avenue
9th Floor
 Dallas
TX
75219
US
Send job

Get job alerts

Create a job alert and receive personalised job recommendations straight to your inbox.

Create alert