Fanatics

Staff Security Engineer

Fanatics

full-time

Posted on:

Location Type: Remote

Location: Remote • 🇺🇸 United States

Visit company website
AI Apply
Apply

Salary

💰 $164,160 - $205,200 per year

Job Level

Lead

Tech Stack

AnsibleAWSCloudGoJavaOpen SourcePythonTerraform

About the role

  • Develop, implement, and uphold secure architecture for product and enterprise environments. This encompasses on-premises, cloud, and containerless environments.
  • Responsible for implementation of the DevSecOps strategy with a significant emphasis on developing and assessing security tools.
  • Develop and implement customized detection mechanisms using various SaaS and cloud technologies to identify malicious behavior.
  • Manage security and infrastructure configurations by leveraging Infrastructure-As-Code tools such as Terraform
  • Consistently contribute to and enhance security coding programs that support immutable and version-controlled environments through the utilization of infrastructure as code, detection as code, and other engineering-driven security initiatives.
  • Responsible for investigation, remediation and root cause analysis of security escalations from MSSP, CSPM, SIEM and other notification mechanisms.
  • Participate in an on-call rotation to provide 24/7 support for incident escalations

Requirements

  • 10+ years of experience as a security engineer or in a similar role
  • Demonstrated expertise in implementing AWS security services and adhering to best practices. (Cloudtrail, GuardDuty, Cloudwatch).
  • Prior experience implementing and managing a zero-trust network access solution to support least privilege access provisioning.
  • Understanding and modeling all aspects of security within a system architecture, with the ability to identify both good and bad security design
  • Strong understanding of several operating systems and network security best practices.
  • Demonstrated experience with container security operations using open source or market leading CSPM solutions.
  • Demonstrated experience leveraging infrastructure as code with tools such as Terraform or Ansible
  • Experience with identity management protocols (e.g., OAuth, SAML, OpenID Connect)
  • Demonstrated ability to develop and comprehend code in one or more programming languages, including Python, Java, or Go.
  • Relevant certifications such as OSCP, SSCP, or GSEC
  • Experience in designing and/or implementing a release management pipeline
  • Able to identify what a good release pipeline looks like (the stages, what they do, why they are there)
  • Experience integrating pipeline tooling with one another either natively or via custom code

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
AWS security servicesTerraformAnsiblePythonJavaGocontainer security operationszero-trust network accesssecurity coding programsdetection mechanisms
Soft skills
investigationremediationroot cause analysisincident responseproblem-solvingcommunicationcollaborationcritical thinkingattention to detailadaptability
Certifications
OSCPSSCPGSEC