Security Engineer, Product SecurityCape • New York, New York, United States
Cette offre d'emploi n'est plus disponible
Security Engineer, Product Security
Cape
- New York, New York, United States
- New York, New York, United States
À propos
Responsibilities
Design, implement, and manage robust security controls and policies within AWS, focusing on the confidentiality, integrity, and availability of data and services.
Perform comprehensive security assessments of our cloud environments to identify vulnerabilities, assess risks, and recommend actionable mitigation strategies.
Lead the integration of security practices into the DevOps lifecycle, promoting secure development, deployment, and operational processes.
Utilize and optimize AWS security tools (such as Amazon GuardDuty, Amazon Inspector, AWS IAM, AWS KMS, AWS WAF, and AWS Shield) and explore third‑party solutions to bolster our security posture.
Assist in running and address findings from penetration tests and security audits, and ensuring prompt and effective remediation.
Stay informed about the latest security threats, vulnerabilities, and compliance mandates affecting cloud environments, providing strategic guidance on technologies and best practices.
Provide expert mentorship to junior security team members and engineers across the company, fostering an organizational culture of security awareness and continuous improvement.
Collaborate with stakeholders to integrate security requirements effectively into engineering projects and broader business initiatives.
Preferred Experience
Bachelor’s degree in Computer Science, Information Security, or a related field (or equivalent experience); advanced degrees or certifications (e.g., CISSP, AWS Certified Security Specialty) are advantageous.
A minimum of 5 years of experience in information security, with at least 3 years concentrated on cloud security within AWS environments.
Deep understanding of AWS architecture, security services, and best practices for securing cloud applications and data.
Proficiency in using infrastructure as code (IaC) tools (like Terraform or AWS CloudFormation) and automating security tasks within AWS.
Skilled in scripting languages (Python, TypeScript, Go) for the automation of security tasks and integration of security tools.
Familiarity with containerization and microservices, particularly in securing stacks using these technologies.
Solid knowledge of network security, encryption technologies, and secure coding practices.
Excellent analytical skills for identifying and mitigating complex security vulnerabilities and risks.
Strong communication and leadership abilities, capable of working collaboratively across teams and effectively conveying technical information to non‑technical stakeholders.
Organized and able to manage multiple priorities in a dynamic, fast‑paced environment.
Competencies
Security Expertise:
Experience finding and resolving security issues and vulnerabilities in code. Bug Bounty programs. Secure by design principles and working with engineers during design time.
Analytical:
Collects data and information; uses critical thinking to solve problems and make sound decisions.
Collaboration & Teamwork:
Builds partnerships with others to reach common goals. Able to share credit with coworkers, display enthusiasm and promote a friendly group working environment. Works closely with other departments as necessary, supports group decisions and solicits opinions from coworkers.
Communication:
Presents information through verbal and written communication; reads and interprets complex information; listens well. Develops and delivers multi‑mode communications that convey clear understanding of unique audiences.
Decision‑Making:
Acts quickly to solve problems and exercises good judgment by making sound and well‑informed decisions. Perceives the impact and implications of decisions; makes effective and timely decisions, even when data is limited.
Dependability/Self‑Management:
Possesses the personal discipline and diligence necessary to keep commitments and to complete tasks. Is accountable for actions and outcomes. Makes effort to improve situations without explicit instructions; a self‑starter who consciously manages his/her own time and resources.
Customer Centric:
Values the importance of delivering high quality, innovative service to employees; understands the needs of the client; responds promptly and is accessible to them; follows through on commitments in a timely manner; maintains positive, long‑term working relationships; assumes ownership of process issues and takes appropriate steps to mitigate problems. Gets consistently high feedback from stakeholders. Raises hand to help.
Flexibility / adaptability:
Adjusts quickly to changing priorities, conditions, and challenges. Copes effectively with complexity and change. Is comfortable navigating ambiguity. Can handle business changes with ease and with a lack of frustration or feeling of defeat. Feels comfortable dealing with limited unknowns in an area they are well‑versed in.
Planning & Organization:
Manages multiple projects, determines project urgency in a meaningful and practical way, uses goals to guide actions, creates detailed action plans, and organizes tasks.
Benefits
401(k) match
100% coverage of medical, dental, and vision premiums for you and your dependents
12 weeks paid parental leave (for all parents, no waiting period)
Stipends for
Family‑forming needs
Gender‑affirming care
Unlimited PTO
Equal Opportunity Employer We hire candidates of any race, color, ancestry, religion, sex, national origin, sexual orientation, gender identity, age, marital or family status, disability, Veteran status, and any other status. Achieving diversity across these categories will serve to make our company stronger and our product better.
#J-18808-Ljbffr
Compétences linguistiques
- English
Avis aux utilisateurs
Cette offre a été publiée par l’un de nos partenaires. Vous pouvez consulter l’offre originale ici.