Cloud Security Manager
Posted 1 month ago
About the team
An engineer in our team works with a global scale infrastructure and has a great impact on millions of players. To guarantee the best experience possible, we count with several Kubernetes clusters spread in four AWS regions and connected to each other. We are in the cutting edge of open-source infrastructure technology, we adopted Kubernetes in production little after the project was launched and today we use technologies such as eBPF and Cilium in our network stack.
The security team focuses on reducing WildLife Studios' risk exposure by implementing information security best practices, leveraging automation, and helping developers deliver value.
The security team works together with internal partners from development and infrastructure areas in order to have a multiplying impact, make security part of the SDLC and infrastructure architecture designs.
About the role
Wildlife Studios is searching for a Devops engineer to join our security team. We seek an engineer with programming, network and security systems knowledge. Since we are always looking for new tools and technologies that better solve our problems, we value professionals that like to learn new things, are autonomous and proactive to bring and implement their ideas.
We'll need you to understand our systems, identify potential vulnerabilities in the production environment, propose, design and implement solutions that will lower the overall risk.
More about you
- Automation is key to scaling. We look for engineers that have a history of proposing, designing and executing automation projects in order to get rid of any manual and repetitive tasks.
- Long-term focus. Improving the security of our infrastructure requires us to build strong foundations and think about the long term impact of our actions.
- Bleeding edge. You are curious and like to study new technologies, test new solutions and measure the impact brought by changes. We want to ensure we are using the best stack possible
What you’ll do
- Implement open source tools to increase the security of our AWS accounts and Kubernetes clusters.
- Develop Lambda functions and other more complex tools to automate processes in our infrastructure
- Define monitoring and observability patterns for security events.
- Identify vulnerabilities in existing infrastructure, propose and implement improvements.
- Integrate security into infrastructure build processes by creating security tools to assert that our Terraform infrastructure as code configurations follow security best practices.
What others in this role have done
- Implement Netflix's Bless to secure SSH access to our EC2 instances
- Implement shelvery to send backups to a disaster recovery AWS account
- Enable MFA for all our IAM users
- Enable, configure and automate AWS GuardDuty for all AWS accounts and regions
What you'll need
It is important to notice that experience in infrastructure security is optional, we'll take care of training an experienced DevOps engineer that has an interest in security.
- Bachelor's degree in Computer Science, Computer Engineering or equivalent experience.
- Linux knowledge. You should be able to discuss in detail what happens under the hood (SO, kernel, network).
- At least two years experience managing AWS deployments.
- At least two years experience managing Kubernetes clusters.
- Solid knowledge in at least one programming language. We work mostly with Python and Go.
- Experience with infrastructure security
- Experience with large scale production systems and technologies.
- Experience with infrastructure as code tools (eg: Ansible, Terraform, etc).
- Experience with CI/CD pipelines (eg: Jenkins, Travis, etc).
We welcome people from all backgrounds who seek the opportunity to help build the best gaming company, where everyone thrives.