Senior Cloud Security Engineer
ExtraHop
full-time
Posted on:
Location Type: Remote
Location: Remote • Washington • 🇺🇸 United States
Visit company websiteSalary
💰 $150,000 - $180,380 per year
Job Level
Senior
Tech Stack
AWSCloudDockerKubernetesSplunk
About the role
- Implement and operate Splunk Cloud Platform and Enterprise Security, including setting up log ingestion from required source systems and ensuring correct parsing and categorization of log events for effective SIEM operations
- Implement and operate endpoint detection and response (EDR) and network detection & response (NDR) solutions
- Develop system configuration and hardening standards and coordinate with other teams to ensure compliance with those standards
- Define standards for secure configuration of application and infrastructure components
- Perform threat modeling, security design reviews, code reviews, and consultations with other staff
- Build and improve vulnerability management processes and tooling to support system owners to successfully remediate issues
- Perform, automate and streamline patching and vulnerability remediation activities
- Develop and deliver training on cloud security issues, best practices and internal policies
- Select, implement and manage cloud security tools including cloud security posture management (CSPM), network/host/container/IaC vulnerability scanners and configuration auditing
- Participate in manual pen testing of new + existing systems
- Perform and/or lead security investigation and incident response activities
- Participate in an on-call rotation with occasional after-hours paging to review carefully prioritized security detections
Requirements
- Bachelor’s degree or equivalent experience in computer science, engineering, or information technology
- 7+ years of experience in security engineering, software development and/or DevOps, with a focus on securing complex systems and modern cloud infrastructure
- Strong experience securing AWS cloud platform and services, including the implementation of guardrails using service control policies (SCPs), IaC policies, CSPM, or similar strategies
- Experience working with container-based environments (Kubernetes, Docker, LXC, etc.)
- Experience securing cloud-based web applications, APIs, data and infrastructure
- All R&D Employees will be required to attend 2 mandatory in-person events every year. These events are typically held in our offices in downtown Seattle and run 4-5 days each
- Must be a US citizen or lawful permanent resident (i.e., green card holder) (in order to support restricted access network environments)
Benefits
- Health, Dental, and Vision Benefits
- Flexible PTO, Sick Time Prorated Based on Date of Hire, and All Federal Holidays (US Only) + 3 Days of Paid Volunteer Time
- Non-Commissioned Positions may be eligible to participate in the Annual Discretionary Bonus Plan
- FSA and Dependent Care Accounts + EAP, where applicable
- Educational Reimbursement
- 401k with Employer Match or Pension where applicable
- Pet Insurance (US Only)
- Parental Leave (US Only)
- Hybrid and Remote Work Model
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
Splunk Cloud PlatformEnterprise Securityendpoint detection and response (EDR)network detection and response (NDR)vulnerability managementcloud security posture management (CSPM)patchingthreat modelingsecurity design reviewsDevOps
Soft skills
communicationcollaborationtrainingincident responseproblem-solving