Lead System Engineer (Cloud and AppSec)

Summary:

To deliver desired, sustainable business outcomes and assure the integrity and continuity of our systems.  This position is responsible for the security, maintenance, and support of AutoZone’s cloud systems. Additionally, this position would be the lead over our Application Security program. This includes teaching domain expertise, providing technical guidance and mentoring, supporting the customers, resolving problems, and training as required.

Responsibilities:

Participate in any and potentially all roles of cloud security.  Roles may vary by project and assignment.  This may include, but not limited to:

• Responsible for technical design and administration of cloud security controls, application security tools and processes, identity, and access management technologies.
• Identify security concerns and mitigating controls; identify, document, and manage risks to AutoZone cloud systems.
• Lead the application security program to expand detection and analysis of software vulnerabilities.
• Accurate work planning and execution; accurate project and time tracking.
• Teaching, coaching, and technical mentoring security subject matter expertise to less senior security analysts and engineers.

Requirements:

• Typically, 8 to 15 years of security or cyber risk management experience in a mid- to large-enterprise environment
• 5 to 8 years of cloud security experience.
• 5 to 8 years application security experience.
• Advanced task estimation, planning and execution skills
• Advanced problem solving, domain technical and analytical skills
• Advanced system design and implementation skills
• Demonstrable experience in at least one programming language.
• Advanced knowledge of more than one of the following functional areas:

• Cloud provider architecture and services e.g., AWS, Google Cloud, and Azure
• Cloud security tools and systems including implementation, management, and monitoring.
• Application Security, e.g., understanding of application-layer security controls and risks, penetration testing, code reviews, Vulnerability Management, etc.

• Preferred: Experience with the Google cloud platform.
• Preferred: Experience with SAST, DAST, and secrets management.
• Preferred: Knowledge of Java, JavaScript, C#, or Python.
• Preferred:  Bachelor’s degree in Computer Science or related field
• Preferred:  Understanding of, and experience with, scripting or coding languages
• Preferred:  Security credentials such as Certified Information Systems Security Professional (CISSP)

Salary : $0