Lead Security & Compliance Engineer
interop.io
AWSAzureCloudSDLC
Cloud Security Architect
Tamnoon
full-time
Posted on:
Location Type: Remote
Location: Remote • 🇧🇬 Bulgaria
Visit company websiteJob Level
Mid-LevelSenior
Tech Stack
AWSAzureCloudGoogle Cloud PlatformKubernetesPython
About the role
- Join Tamnoon’s team of CloudPros and help us remediate our customers’ cloud security risks!
- You’ll lead customer engagements to triage, prioritize, and remediate their cloud vulnerabilities.
- A typical day could involve:
- Gathering data and context around security alerts through a combination of automation and manual investigation to help drive prioritization decisions and remediation strategies;
- Working directly with customer teams to remediate cloud security risks;
- Improving internal knowledge by creating or updating playbooks and runbooks;
- Sharing technical knowledge with the community in the form of blog posts, whitepapers, or other types of thought leadership;
- Collaborating with Tamnoon’s engineering team to make our overall service better, faster, easier, and cheaper.
- Managing key customer stakeholders to ensure engagement success (e.g. status meetings, reports, identifying and resolving blockers, escalating issues, etc.).
Requirements
- A bachelor’s degree in a technical field or equivalent experience.
- Practical experience deploying, configuring, and securing resources in at least one major cloud provider (e.g. AWS, Azure, GCP).
- Practical experience applying security in at least one major cloud provider.
- The ability to communicate complex technical concepts verbally and in writing using English.
- Bonus Superpowers: (if you have at least one of these, we’d love to hear from you!):
- Working knowledge of one major cloud provider, including developer build patterns, common misconfigurations, customer challenges, and techniques for mitigating security risks.
- Broad knowledge across two or more major cloud providers, with a preference for Azure experience.
- Working knowledge of container-based applications and infrastructure (e.g. Kubernetes), preferably in one of the major cloud providers.
- Experience deploying and troubleshooting cloud deployments using one or more common methods, like console, infrastructure as code, CLI, or SDK.
- Experience building governance and security over an estate of cloud subscriptions.
- Experience using Cloud Security Posture Management (CSPM) or Cloud Native Application Protection Platform (CNAPP) tools, like Wiz, Prisma, CloudGuard, Orca, CrowdStrike, Lacework, etc..
- Demonstrable skill at creating, editing, and executing scripts and command line tools using a modern high-level language (e.g Python).
- Ability to run meetings with customers, influence customer decisions, and advocate on behalf of security.
Benefits
- Remote First Community
- $250 US monthly employee benefit
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
cloud securitycloud vulnerabilities remediationautomationmanual investigationcloud provider experiencesecurity applicationcontainer-based applicationsinfrastructure as codescriptingcommand line tools
Soft skills
communicationcollaborationstakeholder managementinfluencingadvocacy