Position: Security Engineer
Location: San Francisco, CA
Duration: Contract, Contract to Hire
Immigration Status: Only Green card holders or US citizens will be considered.
About the Role:
As a Security Engineer you will research the latest threats & methods for deploying controls in the prevention, detection and reaction to best securing the environment and automate threat identification and defense capabilities. Your mission will be to ensure that customer data remains secure. You will work across many teams including infrastructure, engineering, operations and product development. You will work across multiple workstreams including application and infrastructure security, security operations, and incident response.
As a hands-on technical specialist, handle complex and detailed technical work necessary to establish and maintain secure cloud security.Securing perimeter and network of cloud environment.Implement and maintain network security infrastructure globally including Firewalls, IDS/IPS, DDOS mitigation, VPN and remote access.Architect, configure, manage and deploy devices including firewalls, IPS and IDS to improve ability to prevent and detect intrusions in real-time.Track down targeted vulnerabilities and defend against active adversaries.Gather threat intelligence and build, optimize, and automate systems to consume threat feeds and track adversaries.Ensure critical data remains secure while working in many different areas ranging from infrastructure, architecture, engineering, operations, incident response, and red teaming.Create innovative solutions to complex security problems including development of software to identify security issues, deploy security solutions and reportingDevelop, automate and maintain hardened images for the software in the Cloud (OpenStack, VMware, multiple operating systems and middleware technologies)Develop cloud security automation framework to plug-in various security toolsBuild and maintain PKI, Key Management solution for Cloud environmentDeploy and maintain WAF for cloud applicationsImplement and manage SIEM for cloud security team, integrate SIEM with cloud security automation frameworkWork with application and infrastructure teams to design and architect infrastructure (network, OS, databases) and applications to protect against attackers.
Required Skills & Qualifications:
Master's degree (M.S.) in computer science or related field, or Bachelor's degree (B.A.) and equivalent work experienceExperience in the field of security in at least three of the following areas: application whitelisting, security engineering, incident handling, vulnerability analysis, active adversary threat management, penetration testing, intrusion detection, firewalls and encryption technologiesIn-depth knowledge of AWS and other public and private cloud infrastructure is required (including EC2, VPC, ELB, S3, EMR and IAM)Experience with building and operating secure infrastructures.In-depth knowledge of TCP/IP networking (OSI stack, TCP, SDN, etc).Experience with Java, Python, Perl and Ruby for automation.Experience with Shell ScriptingExperience in Unix/Linux system administrationUnderstanding of common protocols and cryptographic standards and ability to guide secure implementations.Strong Unix/Linux experience with familiarity with Windows environments and hardening guidelines.Strong understanding of security technologies including host and network based protection and detection technologies.Knowledge and experience with network, host and application security practices.Experience with Firewalls, IDS/IPS and other network security technologies
Ability to effectively promote ideas and collaboration at the various levels of the organizationDemonstrated ability to learn quickly and take on new challenges.Motivated, self-driven, and passionate about your workInnovative thinkerAbility to solve complex problemsAdvanced interpersonal skills to effectively promote ideas and collaboration at the various levels of the organizationExperience writing security white papers and/or presenting security products and technologies to diverse audiences