Senior Dev Sec Systems Engineer
State Street
- Atlanta, GA
- $120,000-202,500 per year
- Permanent
- Full-time
- Help to build our SecDevOps & AppSec Strategy to integrate cybersecurity into the organizational adoption and improvement of agile practices.
- Partner with Engineering team leads to create, implement, and apply SecDevOps, CloudSec & AppSec principles and processes.
- Provide subject matter expertise in various risk assessments, working in an Agile environment with an understanding of the full software development lifecycle.
- Partner with development and operations teams to facilitate practical automation solutions and custom modules.
- Troubleshoot automation issues and when required, engage the resources to find practical solutions that move projects forward in a timely manner.
- Support the design and development of security architectures for cloud and cloud/hybrid-based systems. Possess a firm understanding of the offerings within both Amazon Web Services (AWS) and the Microsoft Azure platforms. Represents security engineering in development and implementation of the overall global cloud architecture.
- Assist application teams with onboarding to the adopted security tools/technologies; working with vendors to troubleshoot the platform and issues related to such integrations.
- Deliver tasks based on project objectives; technically support projects through to completion.
- Work with teams to continuously improve SecDevOps, SSE and SRE processes and tools.
- Design and implement secure architectures for cloud-based applications, focusing on encryption, identity management, monitoring, alerting, detection network security, and data protection.
- Experience building and securing cloud-based and on-premise environments such as AWS, Azure, GCP, CoLos and physical data centers.
- Knowledge of vendor and CSP native CSPM, CWPP, and CNAPP tools and ability to interrogate and analyze cloud architectures and object graphs using native consoles and APIs.
- Knowledge of securing technologies such as, but not limited to; Cloud-Native Services (e.g., VPCs, S3 buckets), Container Platforms (e.g., Docker, Kubernetes), APIs, Identity and Access Management, Serverless (e.g., Lambda, Azure Functions)
- Current information security certification, including Certified Information Security Manager (CISM), or Certified Information Systems Security Professional (CISSP), AWS Professional Architect, AWS Security Specialty
- Experience with automation and orchestration tools, such as Ansible, Terraform, or Kubernetes, is valuable. Knowledge of Infrastructure as Code (IaC) principles and experience in automating deployment and management tasks in a hybrid cloud environment is beneficial.
- Proven technical solutioning experience with current and emerging technologies including, but not limited to: Agile Development, DevOps, Cloud Engineering, System Hardening, DevSecOps, Cybersecurity, Cloud Security.
- Excellent verbal and written communication skills across internal and external organizations.
- Ability to prioritize and manage several projects or priorities simultaneously.
- Bachelor’s degree in information technology (IT), computer science, or related field with 6 years of relevant experience.
- Experience building and leading teams of DevSecOps, SRE, or SSE Engineers.
- Experience with cloud DevOps tooling and expertise in container native systems and associated security and scaling considerations – ability to work with and build tooling that works in a multi/hybrid cloud environment with modern CI/CD, IaC, DataOps, and DevSecOps best practices.
- Experience working or developing Kubernetes autoscaling tools and deep experience with container and cloud security principles.
- Experience with Information Security: applying STIGs, IAVAs, CIS hardening guidelines and maintaining/updating security documentation and systems security plans.
- Experience with VMware/VMC, Nutanix, Network Platforms, Windows & Linux administration.
- Security+ or other cybersecurity or network security certification.
- Experience using common automation tools such as Ansible, Chef, or Terraform.
- Experience with one or more common programming languages such as Python, Perl, etc.