Listing Description

Join SADA as a Flex Security Engineer!

Your Mission 

As a Flex Security Engineer on the SRE team at SADA, you will reduce customer anxiety of running production workloads in the cloud by implementing and iteratively improving observability, reliability, and security. You will have the opportunity to engage with our customers in a meaningful way by defining, measuring, and improving key business metrics; eliminating toil through automation; inspecting code, design, implementation, and operational procedures; enabling experimentation by helping create a culture of ownership; increase deployment velocity without compromising safety; and winning customer trust through education, skill sharing, and implementing recommendations. Your efforts will accelerate our customers’ cloud adoption journey and we will be with them through the transformation of their applications, infrastructure, and internal processes. You will be part of a new social contract between customers and service providers that demands shared responsibility and accountability: our partnership with our customers will ensure we are working towards a common goal and share a common fate.

This is primarily a customer-facing role. You will also work closely with SADA’s Customer Experience team to execute on their recommendations to our customers, and with Professional Services on large projects that require PMO support. The success of the SRE team will be evaluated by our ability to measure the value of modernization.

Pathway to Success 

#MakeThemRave is at the foundation of all our engineering. Our motivation is to provide customers with an exceptional experience in migrating, developing, modernizing, and operationalizing their systems in Google Cloud Platform.

Your success starts by positively impacting the direction of a fast-growing practice with vision and passion. You will be measured bi-yearly by the breadth, magnitude, and quality of your contributions, your ability to estimate accurately, customer feedback at the close of projects, how well you collaborate with your peers, and the consultative polish you bring to customer interactions.

As you continue to execute successfully, we will build a customized development plan together that leads you through the engineering or management growth tracks.

Expectations

Required Travel - 10% travel to customer sites, conferences, and other related events. 

Customer Facing - You will interact with customers on a regular basis, sometimes daily, other times weekly/bi-weekly. Common touchpoints occur when qualifying potential opportunities, at project kickoff, throughout the engagement as progress is communicated, and at project close. 

Onboarding/Training - The first several weeks of onboarding are dedicated to learning and will encompass learning materials/assignments and compliance training, as well as meetings with relevant individuals. Details of the timeline are shared closer to the start date. 

Job Requirements

Required Credentials:

• Google Cloud Architect Certified or able to complete within the first 45 days of employment.


• Preferred security certification (e.g., CISSP, GIAC, CCSP, etc.)

Required Qualifications:

• 7+ years of expertise in security architecture, cloud security, and application security


• DevSecOps and automation mindset


• Expert level in IT infrastructure security (Linux, Windows, networks, cloud, etc)


• Highly collaborative in a fast-paced team environment with strong written and verbal communication skills


• Experience with designing, implementing, and managing application security threat modeling


• Expertise with vulnerability scanning, container scanning, and SAST/DAST


• Expertise in identity & access management and certificate & key management solutions


• 3+ years in software development using languages like Python, Go, bash, Java, etc


• Proficient in establishment of security standards, policies, and best practice principles and documentation


• Ability to participate in software code refactoring to address application security


• Exposure to full stack development in a cloud environment using CI/CD principals


• Working knowledge in version control such as GitHub, GitLab, Bitbucket, etc


• Experience implementing security in microservices & serverless architecture, and in messaging between services


• Expert in implementing principle of least privilege and separation of duties with ability to architect for defense in depth


• Ability to support security governance and compliance using secure template management, IAM permissions, and configuration drift detection/remediation


• Experience using various tools to automate security in the release pipeline


• Experience implementing application authentication and authorization using SAML, OAuth, OIDC, LDAP, Kerberos


• Experience with tooling used for Security Information and Event Management (SIEM), Endpoint Detection and Response, Managed Detection and Response, or Extended Detection and Response


• Expertise with dependency and library management and supply chain integrity 


• Example technologies: Grafeas, SLSA, Black Duck, OpenSCAP, Trend Micro Cloud One, Orca Security, Splunk, Splunk Phantom, Sysdig, Aqua, kube-bench, kube-hunter, trivy, Clair, Check Point, Chef InSpec, GitLab SAST/DAST, Palo Alto Prisma Cloud, Palo Alto Cortex XSOAR, TFLint, ScoutSuite, CoreStack, CloudKnox, Hashicorp Vault, CyberArk, Thyotic, Nessus, Crowdstrike, Okta, Auth0, Active Directory

Useful Qualifications:

Candidates with these qualifications will have stronger standing, but they are not absolutely necessary.

• Understanding of Chaos Engineering


• Understanding of PCI, SOC2, GDPR, FEDRAMP, and HIPAA compliance standards


• Expertise in Microsoft Windows administration and security, Active Directory, and Group Policy


• Understanding of cryptocurrency and blockchain technology