Staff Engineer - DevSecOps

SUMMARY/JOB PURPOSE :

Protect the organization's digital infrastructure, data, and systems from internal and external cybersecurity threatsby implementing, managing, and continuously improving security practices, tools, and operations with a focus on cloud applications and infrastructure.

ESSENTIAL DUTIES/RESPONSIBILITIES:

• Improve the organization's security posture by identifying weaknesses and vulnerabilities in its security infrastructure and implementing solutions to address them.
• Integrate with various teams on technology initiatives to improve security of our systems and operations.
• Assist in investigating and responding to security events and incidents, such as malware infections, unauthorized access attempts, and other potential security breaches. Determine best procedures to contain threats, document findings, and escalate issues as needed.
• Monitor and analyze security logs and events from various sources.
• Stay current with the latest threat landscape, emerging trends, and solutions in cybersecurity to proactively identify and mitigate potential security risks.
• Improve the organization's security posture by identifying weaknesses and vulnerabilities in its security infrastructure and implementing solutions to address them.
• Assist with and provide cyber expertise to internal staff, vendors, and partners on security practices and issues.
• Follow industry and Exelixis best practices and procedures in a SOX and an FDA regulated environment.

SUPERVISORY RESPONSIBILITIES:

• No supervisory responsibilities.

EDUCATION/EXPERIENCE/KNOWLEDGE & SKILLS:

Education :

• Bachelor's degree in related discipline and 7 years of related experience; or
• Master's degree in related discipline and 5 years of related experience; or
• Equivalent combination of education and experience
• CISSP, CISM, CEH, OSCP, GIAC or similar cybersecurity certification preferred

Experience:

• Experience with operation and implementation of cybersecurity tools.
• Experience in designing, implementing, and managing security controls within cloud platforms, such as IAM, VPC, Zero Trust principles, IaC, IAAS, Security Groups, Key Management Services, SDLC, Ci/Cd pipelines and Network Security.
• Experience in IT Security or related infrastructure administration role in an enterprise environment. Technical lead experience is preferred.
• Experience in investigations and response to cyber events and incidents.
• Experience in enhancing organizational security awareness and resilience.
• Experience with cloud, system, and application security.
• Experience administering IT systems.
• Experience working in Agile environments and using ticketing systems (e.g., JIRA, JSM).
• Experience in regulated industries (e.g., biotech, pharma) with knowledge of GxP and SOX compliance preferred.
• Preferred: AWS Certified Security - Specialty

Knowledge, Skills and Abilities:

• Strong knowledge of general IT applications and infrastructure.
• Advanced knowledge of CLI and scripting language experience (Python, PowerShell, etc..)
• Advanced knowledge of AWS
• Advanced knowledge of IAC, SDLC, Ci/Cd pipelines
• Advanced knowledge of cybersecurity technologies and concepts.
• Strong analytical, problem solving, organizational, and communication skills.
• Abilitytoworkeffectivelywithcustomerstosolvebusinesschallengeswhilebalancingtheneedforconfidentiality,integrity,andavailability.
• Ability to multitask and work collaboratively.
• Ability to work with ambiguity.
• Ability to work with confidential data.
• Ability to continuously learn and improve.
• Ability to work with minimal guidance, to adapt to frequent priority changes, and response to ad-hoc requests
• Architect secure cloud infrastructure using guardrails and golden paths using IaC patterns across AWS and Azure.
• Integrate SAST, SCA, DAST, and dependency scanning into GitHub pipelines and provide help and support for mitigating risks across the SDLC.

Work Environment/Physical Demands :

Our office is a modern, open space that fosters collaboration and creativity. Teams work closely together, sharing ideas and solutions in a supportive atmosphere. We provide all necessary equipment, including dual monitors and ergonomic chairs, to ensure a comfortable workspace.

• Occasional travel (5%).
• On-call availability for critical escalations.

#LI-EZ1

If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us!