Senior Security Engineer

As part of the Security team, the Product Security Engineer will support and advance our cloud infrastructure and DevSecOps approach in support of our SaaS services. Working closely with Cloud Operations, Site Reliability Engineering, and DevOps teams, this role will focus on ensuring security is integrated early into planning and design of the infrastructure and platform components supporting our offerings.

• Contribute to requirements definition and design of infrastructure and platform components
• Identify and design security controls and procedures to ensure coverage when new technologies are selected
• Consult to the SRE (Site Reliability Engineering), Ops, Engineering, and Product Management teams as needed to ensure security is integrated early
• Develop proof of concept solutions as needed
• Provide guidance on securing the DevOps environment and pipeline
• Perform penetration testing against the infrastructure, platform, and applications
• Identify and evaluate risks in the cloud infrastructure and services and work with stakeholders to manage appropriately
• Troubleshoot security and network problems
• Participate in investigations, triage, and remediation for security events and incidents
• Develop documentation for policies, procedures, tooling, and event handling
• Identify opportunities for improvement and automation in existing procedures, tooling, and systems
• Drive continual improvements to the secure configuration and operational practices of TraceLink’s offerings
• Maintain a high expertise level of the cloud infrastructure security landscape and new threat vectors

• Experience working with AWS services and how to secure them
• Demonstrable knowledge and experience with cloud-native technologies like Kubernetes, containers, and Terraform/Helm
• Demonstrable knowledge and experience with security concepts and tooling in the use of securing, monitoring, auditing, and testing cloud infrastructure including:
  • Secure configuration and hardening
  • Vulnerability assessments
  • Operational and runtime practices and procedures
  • Log and event analysis and alerting
• Demonstrable experience developing programs to accomplish complex tasks using Python or other modern scripting languages
• Demonstrable technical knowledge of how to configure and secure Linux/Unix
• Demonstrable technical knowledge of how to configure and secure Docker Containers
• Experience performing penetration testing
• Strong analytical and problem-solving skills
• Strong verbal and written communication skills
• Minimum 3+ year's relevant experience in the IT field, including the following:
  • Driving security initiatives
  • Supporting Linux systems and applications in a production environment
  • Supporting cloud-based systems and services
  • Automation engineering

Desired Skills:

• Experience and familiarity with cloud-native architectures and services, including container orchestration and management, service mesh, infrastructure as code templating and automation, and others
• Experience with open source solutions for security testing and operations
• Experience working with Agile/Scrum development methodology
• Bachelor's degree in Computer Science, Information Systems Security, or related field, or equivalent experience
• CISSP, CCSP, CEH, SANS Security, and other industry and vendor-specific security certifications