Senior Security Cloud Container Vulnerability Engineer
Posted on Sep 11, 2020 by Request Technology - Craig Johnson
*Position is bonus eligible*
Prestigious Enterprise Company is currently seeking a Sr. Security Container Vulnerability Engineer. Candidate will be responsible engineering and implementing solutions in an cloud/container environment. Candidate will design and implement systems and procedures to sustain the security, integrity, and availability of the organization's data. Assess risk of exposure of proprietary data through weaknesses in platforms, access procedures, and forms of access to the organization's systems and the data contained in them. Track security violations and identify trends or exposures that could be addressed by additional training, technical measures, or use of application tools to enhance security.
Automate cloud/container security solutions and controls
Guide in identifying opportunities for improvement in the cloud security vulnerability management and secure configuration baseline program and then driving those improvements through the enterprise
Examine current cloud security practices and identify key risks, then execute programs to address them Provides security expertise for cloud-based DevOps development and deployment
Designing, configuring and/or developing security solutions
Assist application teams to better understand and address security findings.
Work on improvements including the development of new tools, automation, and integration
Make recommendations to help improve our security posture as an organization
As a hands-on technical specialist, handle complex and detailed technical work necessary to establish and maintain cloud and container security
Confer and collaborate with internal and external auditors to ensure that appropriate controls are installed, operating properly, and being monitored and reported.
Participate in projects designed to test defenses against hacking, denial of service, spam, break-ins, or similar attacks.
Bachelor Degree or Equivalent Areas of Study (Preferred)
Excellent logical, problem solving and analytical skills
Automation - Excellent Coding skills - be it any programming language like Java or Python
Understand the software life cycle, and have an appreciation of the DevOps or DevSecOps and CI & CD way of working (both theoretical and practical)
Solid comprehension and experience in end-to-end vulnerability management and secure configuration baseline development across multiple platforms and environment including the Cloud (AWS and Azure) and for containers (Docker/Kubernetes)
Comfortable with configuring Splunk for various use cases such as tied to vulnerability management and other supporting tools
Strong technical background in supporting one or multiple platform areas such as tied to Windows, UNIX, Middleware, Mainframe, database, containers