Senior Security Engineer (Drupal Cloud, Security/FedRAMP)

Pune, India

Acquia, Inc. logo
Acquia, Inc.
Apply now Apply later

Posted 1 month ago

Senior Application Security Engineer (PHP/Ruby/Python +PCI-DSS / HIPAA + Cloud Hosting)

Does the challenge of finding security flaws in custom application code get your mind racing? Can you think like an attacker to misuse and break cloud services? Join Acquia and help enhance the security of the largest sites and brands on the planet, whose Drupal apps are powered by our PaaS platform and SaaS services built on top of many thousands of AWS EC2 instances.  

 Summary:

Acquia runs one of the world's largest Platform as a Service (PaaS) offerings. Our Drupal optimized cloud runs on over 18,000 AWS instances and delivers billions of page views monthly for our clients, running some of the largest and most mission-critical websites in the world. We are seeking passionate application security engineers with a strong security mindset who are willing to take the initiative to tackle important problems across multiple products at Acquia, with a focus on our cloud hosting platform. 

Our cloud engineering team utilizes a variety of programming languages and technologies to tackle many interesting architecture and scalability challenges. Although we run PHP & MySQL at a massive scale for our Drupal customers, on the backend we’re building scalable systems, automation and stack enhancements in everything from Ruby to Go, and storing data in everything from MySQL to DynamoDB.

 At Acquia we work on a variety of exciting projects ranging from running massive microservice infrastructures, to building highly available database clusters using the latest technologies, to building streaming log pipelines and ultimately being the best place in the world to run Drupal websites. We’re one of Amazon’s largest partners and run our workloads in 9 AWS regions.

 Job Description:

  • Be a Security Champion in an agile SecOps team owning and operating the services you build
  • Design and develop tools that automatically deploy, maintain, and monitor LAMP-based hosting environments
  • Research, specify, and test cloud hosting architectures leveraging your web, database, and OS knowledge
  • Debug the toughest distributed systems production issues
  • Share your expertise with customers, partners, and the open-source community via blogs, papers, talks, etc.

 Job Requirements: 

  • Strong software development and technical leadership skills
  • Passion for websites and website delivery architecture
  • Deep, working knowledge of LAMP stack--OS, web server, and database systems (Linux, Apache, and MySQL preferred)
  • Strong Object Oriented Programming experience with a scripting language such as Ruby, Python, PHP, etc.
  • Web security and compliance experience (e.g., Firewalls, IDS/IPS systems, DDOS prevention and PCI-DSS, HIPAA, FedRAMP, etc.)
  • Linux packages (e.g., Debian or RPM packages); RHEL and Ubuntu experience
  • Networking (e.g., TCP/IP, Routing, DNS, load balancing, HTTP caching, clustering, VPN, etc.)
  • Holistic understanding of the Internet and hosting from the network layer up through the application layer.
  • Excellent organisational and communication skills, both verbal and written
  • Cloud hosting experience (e.g., Amazon Web Services, Google Compute, Azure, etc.)
  • 3+ years of related experience (mid to senior level role)
  • BS in Computer Science or equivalent experience
  • Ability to work effectively across multiple teams and drive results 

Extra Credit:

  • Languages: Go, RUST, Java
  • Experience with threat modeling, especially for web application and web APIs
  • Cloud security experience (VPC, IAM, Security Groups, CloudTrail, etc.)
  • Web and web API Development (e.g., Drupal, Symfony2, ruby applications like Sinatra)
  • Configuration management (e.g., Puppet, Ansible, CloudFormation, etc.)
  • Containerization:  Docker, LXC, etc.
  • Automated testing experience--Jenkins, TravisCI, unit tests, system tests, etc.
  • Kubernetes: Hands-on, working experience securing K8s deployments according to “hard multi-tenancy” guidelines and methods.  

 

Acquia is an equal opportunity (EEO) employer. We hire without regard to age, color, disability, gender (including gender identity), marital status, national origin, race, religion, sex, sexual orientation, veteran status, or any other status protected by applicable law.



Job tags: Architecture Automation AWS Azure DNS Docker DynamoDB FedRAMP Go Google IDS IPS Java Linux LXC PaaS PCI PHP Puppet Python Ruby SaaS TCP/IP