Tanium

Cloud Cybersecurity Engineer

Tanium

full-time

Posted on:

Location Type: Hybrid

Location: Addison • California, North Carolina, Texas, Washington • 🇺🇸 United States

Visit company website
AI Apply
Apply

Salary

💰 $100,000 - $295,000 per year

Job Level

Mid-LevelSenior

Tech Stack

AWSAzureCloudGoJavaScriptKubernetesPythonTerraform

About the role

  • Collaborate with Detection, Security, and Software Engineers to build, operate, and defend Tanium Cloud's Identity and Access Management (IAM)
  • Operate Identity and Access Management (IAM) in Azure, AWS, and Kubernetes using Tanium Cloud’s infrastructure-as-code and policy-as-code.
  • Contribute to the implementation of Tanium Cloud’s IAM strategy and controls in collaboration with Security and Software Engineering teams to enable just-in-time and just-enough access.
  • Assess the effectiveness and appropriateness of existing policies and permissions and make recommendations to continuously improve Tanium Cloud’s IAM controls.
  • Author, test, deploy, and audit the efficacy of AWS IAM policies and Azure Conditional Access Policies tailored to Tanium Cloud to implement strong security controls.
  • Support Tanium employees needing assistance with access to Tanium Cloud’s environment.
  • Stay up to date with the latest IAM security threats, vulnerabilities, and industry trends to proactively enhance security prevention and detection measures.
  • Build, cultivate, and maintain positive relationships with internal customers to identify and facilitate solutions to increase the impact of the team's work.

Requirements

  • Bachelor's degree or equivalent experience
  • Cloud Security, IT Security, or related technical field preferred
  • 3+ years of experience working in security focused roles
  • 1+ year of experience with AWS, Azure, or Kubernetes
  • Knowledge of cloud-based Identity and Access Management concepts, including AWS Organizations, AWS IAM, AWS Service Control Policies, Azure Entra ID (Entra and Subscription Level RBAC), Azure MyApps, and Azure Policies.
  • Hands-on experience using infrastructure-as-code (e.g. Terraform, CloudFormation)
  • Familiarity with SAML2, OAuth2, and OIDC for Single Sign On (SSO) with federated identity access brokers (i.e. MyApps, Cognito, KeyCloak).
  • Excellent collaboration and communication skills to support the design and implementation of new IAM constructs.
  • Experience with modern software development and automation tools like Git and Github Actions
  • Experience in at least one modern programming language (e.g., Python, Go, JS, etc.)
Benefits
  • medical, dental and vision plan
  • family planning benefits
  • health savings account
  • flexible spending account
  • transportation savings account
  • 401(k) retirement savings plan with company match
  • life, accident and disability coverage
  • business travel accident insurance
  • employee assistance programs
  • disability insurance
  • other well-being benefits

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
Identity and Access Management (IAM)AWS IAMAzure Conditional Access Policiesinfrastructure-as-codeTerraformCloudFormationSAML2OAuth2OIDCprogramming languages
Soft skills
collaborationcommunicationrelationship buildingproblem solvingteamwork
Certifications
Bachelor's degreeCloud Security certificationIT Security certification