Senior Security Engineer - Docker/Kubernetes

Grow your career with a growing organization

Whether they’re helping people reach their long-term financial goals or providing personal wealth management strategies, every associate contributes to changing the lives of those we serve for the better. When it comes to job satisfaction, that’s hard to beat. And from a personal satisfaction perspective, you’ll enjoy the freedom to support causes that matter to you and experience a truly inclusive work environment. Your future starts now.

Empower is currently looking to add a new Senior Security Engineer to our Threat and Vulnerability Management team. This position is technical in nature, and we are looking for a self-motivated professional who is driven to succeed in a fast-paced environment. The Sr. Security Engineer will be responsible for developing, reviewing, and updating Empower’s container security program. Day-to-day responsibilities support, maintenance, and operations of the Cloud Enterprise product. This will involve implementation of new policies, defining of IAM alerts, investigation of security alerts, reviewing of logs, and identification of security vulnerabilities. Ideally this candidate will have at least 2 years of experience working with Prisma Cloud Enterprise, but similar tools used for Cloud Security Posture Management (CSPM) will be considered as well.

What you will do

• Oversee and manage our container security platform, associated security components and micro segmentation controls.
• Implement software security scanning policies as part of software pipeline.
• Provide direction to the team for container security policies, standards, and procedures, that adhere to industry best practices.
• Provide direction to the team for Implementing security hardening standards for container infrastructure.
• Conduct vulnerability assessments for Kubernetes and Docker containers
• Educate security teams about container security controls and underlying containerization platforms.
• Deliver security solutions and automate security operations.
• Provide excellent customer service for internal and external customers in support of security initiatives, incident response, and support.
• Maintenance of security tools and technologies throughout the enterprise environment
• Provide accurate, clear, and concise documentation.
• Perform all necessary functions associated with the implementation and integration of security tools and platforms into the enterprise environment.
• Identify potential security risks and define and document remediation options or mitigating controls.
• Provide subject matter expertise, counsel, and input for enterprise-wide information security initiatives, strategies, projects, and policies.
• Maintain certifications and keep up to date with current information technology.
• Proactively research and evaluate new tools and techniques to enhance security posture of Kubernetes and Docker environments
• Participate in on-call rotation.

What you will bring

• 3+ years of experience with container security, container workload protection, managing associated security controls, to include defining policies and administering container platform policies, RBAC, and micro segmentation controls.
• Bachelor’s degree in information technology, Computer Science, or related field.
• 6 years’ experience in information technology - Emphasis on experience with containerization i.e Docker and Kubernetes
• Preference will be given to those with degrees in Computer Science, Information Technology, Mathematics, Engineering (various disciplines), and other technology-focused areas.
• Must have CISSP or ability to obtain within first six months of employment.

What will set you apart

• Cloud Services: Proficient in AWS services like Elastic Beanstalk, CloudFormation, IAM, etc.
• Infrastructure as Code: Skilled in Terraform for infrastructure provisioning and management.
• Scripting: Proficiency in Python, Bash, and PowerShell for automation tasks.
• CI/CD: Experience with Jenkins for automating build, test, and deployment processes.
• Version Control: Proficient in Git for source code management.
• Security and Compliance: Understanding of security standards (FedRAMP, PCI, HIPAA).
• Cloud Security: Knowledge of implementing security best practices.

***Applicants must be authorized to work for any employer in the U.S. We are unable to sponsor or take over sponsorship of an employment visa at this time, including CPT/OPT.***

#PJT #LIRemote

What we offer you

We offer an array of diverse and inclusive benefits regardless of where you are in your career. We believe that providing our employees with the means to lead healthy balanced lives results in the best possible work performance.

• Medical, dental, vision and life insurance
• Retirement savings – 401(k) plan with generous company matching contributions (up to 6%), financial advisory services, potential company discretionary contribution, and a broad investment lineup
• Tuition reimbursement up to $5,250/year
• Business-casual environment that includes the option to wear jeans
• Generous paid time off upon hire – including a paid time off program plus ten paid company holidays and three floating holidays each calendar year
• Paid volunteer time — 16 hours per calendar year
• Leave of absence programs – including paid parental leave, paid short- and long-term disability, and Family and Medical Leave (FMLA)
• Business Resource Groups (BRGs) - internal networks that rally around common interest, experiences and identities such as race, ethnicity, gender, ability, military status and sexual orientation. BRGs play a vital role in educating and engaging our people and advancing our business priorities.

Base Salary Range

The salary range above shows the typical minimum to maximum base salary range for this position in the location listed. Non-sales positions have the opportunity to participate in a bonus program. Sales positions are eligible for sales incentives, and in some instances a bonus plan, whereby total compensation may far exceed base salary depending on individual performance. Actual compensation offered may vary from posted hiring range based upon geographic location, work experience, education, licensure requirements and/or skill level and will be finalized at the time of offer.

Equal opportunity employer •  Drug-free workplace

We are an equal opportunity employer with a commitment to diversity.  All individuals, regardless of personal characteristics, are encouraged to apply.  All qualified applicants will receive consideration for employment without regard to age (40 and over), race, color, national origin, ancestry, sex, sexual orientation, gender, gender identity, gender expression, marital status, pregnancy, religion, physical or mental disability, military or veteran status, genetic information, or any other status protected by applicable state or local law. 

***For remote and hybrid positions you will be required to provide reliable high-speed internet with a wired connection as well as a place in your home to work with limited disruption. You must have reliable connectivity from an internet service provider that is fiber, cable or DSL internet. Other necessary computer equipment, will be provided. You may be required to work in the office if you do not have an adequate home work environment and the required internet connection.***

Job Posting End Date at 12:01 am on:

Want the latest money news and views shaping how we live, work and play? Sign up for Empower’s free newsletter and check out The Currency.