Listing Description

We’re looking for exceptional people to help deliver the next generation of business financing solutions. We are a group of fun, creative, and motivated people that like to tackle challenges head on. If you have a strong desire to be part of a highly professional, agile team, in an exciting and growing space, you’ll find your next job at bluevine.

As a Cloud Security Engineer at bluevine you will have the opportunity to work across all information security domains with all the cutting edge technology. Your position is an impactful part of the security team, developing and implementing security controls for the company's systems and projects in a rapidly evolving environment.

Our team is always learning, sharing, and researching, and your voice will make an impact on the org’s overall security posture.

What You'll Do:

• Evaluate new technologies and processes that enhance security capabilities


• Build, Develop, Implement and administer various security solutions


• Identify gaps, perform vulnerability testing, risk analyses and security assessments


• Administer and implement authentication and access controls across the organization


• Raise awareness of security policies and develop corresponding procedures


• Provide consultations to R&D projects on all security related matters and provide solutions to existing and emerging threats


• Proactively improve internal processes with Automation

What We Look For:

• Minimum 2 years of experience in the InfoSec field with a reputable certification in a cyber security domain (CISSP, CISA, Security+, CEH, CISM, OSCP etc)/ or at least 5 years of equivalent experience


• Deep knowledge of Linux systems


• Passion for security automation and proven experience with scripting (Bash/ Python preferred)


• Deep understanding of Networking concepts, and demonstrated connectivity debugging skills on all OSI layers


• Deep understanding of modern HTTPS applications and APIs (HTTP/S, PKI, Microservices, LB, FW and WAF)


• Experience in a system administration role supporting multiple security platforms and applications such as Firewalls, WAFs and LBs, Vulnerability scanners, VPN servers, Directory services etc


• At least 1 year of experience with well known Cloud IaaS service (AWS preferred)


• Good understanding of Risk Assessment processes with well-formed opinions on all things Security/ privacy, and the ability to concisely present them to relevant stakeholders


• Strong self-learning skills, and a positive can-do attitude

Bonus points if you also have:

• Experience with planning, researching and developing security policies, standards and procedures


• Experience with designing secure networks, systems and application architectures


• Experience with Penetration testing, code review, hardening servers and applications


• Experience with container orchestrators and IaaC


• Experience with SIEM systems or other log managers