Cloud Platform Security Engineer

Please note that this role is Hybrid and will require 3 days per week onsite Glocomms is partnered with a leading consumer-focused data analytics and online marketplace company that's reshaping how millions of users engage with real estate. Security is paramount to this mission, and the organization is seeking innovative professionals to integrate security at every stage of the software delivery process. The Cloud Platform Security Engineer will be a key player in integrating security into the cloud infrastructure with a DevSecOps approach. The ideal candidate will have hands-on experience with Cloud-Native Application Protection Platforms (CNAPP) and will work across teams to implement automated security controls within CI/CD pipelines. Key Responsibilities: Configure and manage Cloud-Native Application Protection Platform (CNAPP) tools such as Prisma Cloud, Lacework, and Orca Security to protect cloud workloads and services. Embed security checks within CI/CD pipelines, ensuring continuous monitoring and automated validation of security standards during development and deployment. Collaborate with DevOps and development teams to design and implement security controls across multi-cloud environments (AWS, GCP, Azure) with a focus on automation and scalability. Develop and enforce infrastructure as code (IaC) security policies to ensure that cloud infrastructure is securely configured using tools like Terraform, CloudFormation, or Ansible. Automate security tasks such as vulnerability scanning, configuration management, and compliance checks using CNAPP solutions and cloud-native security tools. Implement and maintain IAM policies, network security controls, encryption standards, and logging mechanisms to secure cloud environments. Monitor cloud environments using CNAPP tools and cloud-native security services to detect and respond to security incidents in real-time. Conduct security assessments, penetration tests, and vulnerability management, integrating findings into automated remediation processes. Stay current with the latest cloud security and DevSecOps best practices, continuously improving the security posture through automation and new technologies. Qualifications: Bachelor's degree in Computer Science, Information Security, or a related field is required. 5+ years of experience in cloud security engineering, with a focus on DevSecOps practices and public cloud platforms (AWS, GCP, Azure). Hands-on experience configuring and managing CNAPP tools such as Prisma Cloud, Lacework, Orca Security, or similar platforms. Expertise in integrating security within CI/CD pipelines using automation tools (e.g., Jenkins, GitLab CI, CircleCI) to ensure continuous security testing and validation. Proficient in infrastructure as code (IaC) tools like Terraform, CloudFormation, or Ansible, with a focus on secure cloud resource provisioning. Strong knowledge of IAM, network security, encryption, and cloud-native security monitoring tools. Scripting and coding skills (Python, Bash, or PowerShell) for automating security tasks and building security tooling. Experience with container security (Docker, Kubernetes) and securing cloud-native applications and services. Familiarity with security frameworks (CIS, NIST) and compliance standards (SOC 2, ISO 27001, GDPR). Preferred Qualifications: Security certifications such as CISSP, CSSLP, AWS Certified Security - Specialty, etc. Experience with Zero Trust architecture, microsegmentation, and cloud-native security approaches. In-depth understanding of DevOps methodologies and tools, with a focus on integrating security into fast-paced, iterative development cycles.

Created: 2024-11-05