Rockcruit

We are hiring SecOps Engineer Senior! 🚀

Job Purpose

We are seeking a highly skilled SecOps Engineer to lead the development and management of security infrastructure and business practices that drive effective risk management and reduction. In this role, you will be responsible for architecting a comprehensive security model for cloud resources supporting the partner’s platform, including AWS, GCP, and Kubernetes clusters.

As part of our layered security strategy, the SecOps Engineer will collaborate closely with teams across Infrastructure, ASM, Detection and Response, Development, and Compliance to ensure robust security from applications to APIs and cloud resources. This role involves enhancing security controls throughout our environment, such as anti-phishing gateways, EDR, AV, firewalls, IDS/IPS systems, and AWS Security Hub. Additionally, the position requires working with cross-functional teams like Dev, HelpDesk, PX, and Legal to provide security recommendations and support the growth of both partner’s security capabilities and its associates.

Responsibilities

  • Establish a secure cloud administration practice and program. Work with cloud platform owners to secure all cloud solutions across the enterprise.
  • Deploy and manage infrastructure and applications via code, utilizing CI/CD pipelines and Kubernetes (K8).
  • Contribute to the development, improvement, and operational management of security operations, monitoring, and incident response practices, processes, and solutions.
  • Work with vendors to manage Proof of Concepts (PoCs) and ensure seamless integration of security solutions.
  • Maintain a comprehensive understanding of security domains, compliance requirements, and risk management practices to ensure adherence to industry standards and best practices.

Experience & Qualifications

  • 5+ years of experience in cybersecurity and infrastructure roles.
  • Hands-on experience engineering and implementing data security controls in cloud environments, including databases, datastores, and SaaS platforms.
  • Strong understanding of Linux and Kubernetes/container management and security.
  • Familiar with DevOps practices with experience in code-based implementation and management.
  • Deep knowledge of AWS services, including but not limited to S3, Lambda, RDS, EC2, and AWS Security Center.
  • Solid understanding of TCP/IP networking, including knowledge of protocols and services.
  • Insight into what information or assets are valuable to threat actors, how organizations are breached, and how customer accounts are compromised.
  • Comprehensive understanding of the security domain, including compliance, business, risk, and operations, and how these apply to business functions.
  • Excellent communication, interpersonal, and leadership skills, with the ability to interact effectively with staff at all levels.
  • Proven ability to be agile and work effectively in a dynamic environment.
  • Demonstrated ability to perform under pressure and respond rapidly to emerging incidents and situations.
  • Strong project management, and organizational skills, comfortable with multitasking in a high-energy environment.
  • Creative and analytical problem solver with a passion for providing excellent customer service.
  • Advanced proficiency in English.

%FOOTER_POWERED_BY%breezy