Security Engineer

Minimum Qualifications:

• Bachelor's Degree or equivalent work experience

• 3 years of experience in a SOC, Cloud security, IT, or related cybersecurity field

• 3 years of experience in Azure, AWS, GCP, or other cloud services (IaaS, PaaS, or SaaS)

• 3 years of experience in utilizing cloud security solutions, EDR, and posture management products

• 3 years of experience with security frameworks such as NIST 800-171, MITRE, ISO 27001, or similar frameworks

Preferred Qualifications:

•Experience with Prisma Cloud or similar CSPM/CNAAP tools

•Familiarity with scripting/automation tools (Python, PowerShell, or Bash) for configuration and reporting.

•Industry certifications such as Sec , CCSP, or relevant GIAC certifications.

•Analytical abilities, including process analysis and development, problem-solving, and root cause analysis.

Responsibilities:

Job Overview:

The Cloud and Endpoint Security team is committed to enhancing our cybersecurity framework to protect our digital assets and infrastructure. We are seeking motivated and skilled professionals to join our Cloud and Endpoint Security team. The team interfaces with many departments to ensure security tools are integrated where possible and provides the incident response team with the tools to be effective. The Security Engineer will be instrumental in driving our cybersecurity posture, focusing on the protection of cloud environments and endpoints. This role involves implementing security measures across the cloud and endpoint landscape, working with the incident response team, Cloud infrastructure, and Data Governance on tool integrations and alert refinement.

Your responsibilities may include, but are not limited to:

•Configure and refine cloud security tools to prevent, detect, and report.

•Coordinate with DevOps and patch teams to ensure timely remediation of misconfigurations and vulnerabilities.

•Collaborate with the incident response team to refine alerting and logging capabilities provided by cloud security tools.

•Assist in the development of organizational security strategies that align with business objectives and industry best practices.

•Stay updated with the latest cybersecurity threats, trends, and technologies, incorporating them into Airlock configurations where applicable.

•Support the development and maintenance of incident response plans and secure access protocols.