Security Automation Engineer

You love automation and want to have your hands on a keyboard securing a high-velocity environment with demanding security posture requirements. You appreciate that in a heavily federated security environment, your infrastructure and application partners are contributing to security in a timebox. You understand how automation reduces their toil and how providing clean, well-summarized data supports their security responsibilities.

With an eye for assessing data quality, you understand how it creates automation opportunities and supports decision-making. Communication with internal partners is important - you understand the change impact of your work, when to seek feedback about production and workflow impact, and how to budget change so that partners can keep pace. Juggling a large range of opportunities for automation is exciting and you can work under self-imposed timebox constraints. You are thrilled at never having to do GRC but appreciate the need to meet security standards, show basis for judgment, and enable machine-readable auditability and metrics as primary automation features and design considerations, treating this as an aspect of SRE for modern operations.

While deep technical skills across a wide range of domains are critical to success with us, we're also looking for fast learners who are passionate about security and are constantly researching to stay ahead of the newest threats. We want to support your growth as an ambitious and motivated generalist. You are analytical, love to problem solve and understand the importance of collaboration. You constantly look for ways to improve operations and are able to manage projects independently.

• Bachelor’s degree in Computer Science, Math, Physics or Engineering
• 5+ years of related technical experience in Cybersecurity, preferably in a Cloud Environment
• 5+ years of experience with Programming and Scripting Languages (Python strongly preferred).
• Experience automating operational processes, preferably in a Cloud Environment
• Conceptual familiarity with vulnerability and posture management for infrastructure and/or applications
• 2+ years of experience working with infrastructure and application stakeholders on the deployment portion of product life cycles, preferably including security considerations such as vulnerability and posture assessment and remediation for internet-facing products

We don’t expect experience in a large number of these areas, what we are looking for is someone hungry enough as a generalist to sustain this breadth.

• Python for automation and data analysis
• AWS, particularly SecurityHub, GuardDuty, Lambda, IAM/SCPs, and Inspector
• Modern identity, particularly Okta
• Application Security in an agile environment
• Developing for data pipelines and analytics
• Cloud networking (IaaS networking primitives, LBs, CDN, WAF, DNS, service mesh)
• Infrastructure as Code, preferably Terraform
• Development in Golang as a programming language additional to Python
• MITRE ATT&CK framework, particularly data sources
• Log analysis (Splunk, Athena, CloudTrail) and reporting
• Security and systems administration in Windows-, Linux-, and MacOS-based operating system environments
• Containers and container orchestration, preferably Kubernetes
• SaaS security, particularly Google Workspaces and Slack
• VDI or Cloud VDI, particularly AWS Workspaces and Workspaces Application Manager
• Endpoint management (UEM/MDM, particularly Jamf and EDR)
• CIS hardening all of the above
• Incident response automation

• Hands-on experience with delivery via DevOps processes (git with pull requests, code reviews, automated code hygiene checks, e.g.,git hooks or CI/CD actions)
• Familiarity with SRE methodology
• Verifiability problems of work experience domain (e.g. data quality measurement for data engineering, code coverage for software engineering, reachability for network security, least privilege for IAM, SLOs for reliability characteristics)
• Experience developing in a non-dynamic language, preferably Golang
• Familiarity with security and privacy frameworks, particularly CIS, NIST CSF/PF, and Cloud Security Alliance