Cyber Security Engineer II

About ForgeRock:   

In today’s highly connected digital world, understanding, managing and securing the identity of individuals and things is essential to safety and success of both businesses and their customers. Billions of people connect from anywhere, use a wide variety of devices and expect a seamless yet secure experience.   

The ForgeRock mission is to provide the most simple and comprehensive Identity and Access Management Platform to help our customers deepen their relationships with their consumers and improve the productivity and connectivity of their employees and partners.  Our identity solution enables great digital experiences and is embedded with a rich set of security, privacy and consent features.  We deliver our platform through both cloud services and on-premises software. 

Our customers are some of the biggest companies, organizations, and even countries in the world. On any given day, it’s likely that the ForgeRock Identity Platform helped keep your data safe, gave you access to stuff, and supported trusted relationships between you, companies and the devices you were using.

ForgeRock is headquartered in San Francisco, but we are a global company with offices in the following cities: Vancouver, WA; Austin, TX; Bristol, UK; Grenoble FR; Oslo NO; and Singapore.  Please read more about us at forgerock.com or follow ForgeRock on Twitter at http://www.twitter.com/forgerock.

The Role:

ForgeRock is currently looking for a Senior CyberSecurity Engineer to play a key role in designing, developing, supporting and improving policies, processes, & technical implementations of the ForgeRock Identity Platform. This person will also work closely with our platform and cloud engineering teams to build the foundation of the company’s future FedRAMP business in the Cloud.

As a key member of the Enterprise Security team, this is a compliance/engineering role to design, build, deliver and support secure deployments running in containers for the modern world. This requires the candidate to be able to create complex virtual machine environments, storage, network architecture, and networking in GCP using Kubernetes as the orchestration framework.

The end goal is to ensure that ForgeRock continues to deliver world-class web access to our identity management products that are built for the cloud.

This position is open nationwide - candidates living anywhere in the United States can apply.

Please Note the skills and responsibilities listed below should be viewed as a guide and not all of the skills are expected in the successful candidate

Responsibilities:

• Design, maintain, document, and implement cloud solutions/services, focusing on IaaS for hosted customers requiring FedRamp environments.
• Interface with internal and external customers to understand business and technical requirements.
• Assess complex technical and business requirements and take ownership of projects with minimal guidance.
• Utilize your intellectual, communication, and technical skills to diagnose issues and provide solutions to our users working within our public cloud infrastructure.
• Build security into every aspect of your design.
• Utilise a diverse set of systems administration and programming skills to build and manage automated systems.
• Exercise your ability to adapt and react to complex issues in a timely manner as our business needs and objectives evolve.
• Reduce technical debt by creating automation for day-to-day operations.
• Drive deep architectural discussions in a collaborative fashion to ensure solutions are designed for successful, automated deployment in the cloud.
• Mentor other members of the team to expand skills across the group.
• Provide an escalation point for our operations and core OS teams for complex issues.
• Work hand in hand with vendors to design solutions using best practices.
• Work in collaboration with Professional and Consulting service teams to design customer solutions.
• Work with our overseas teams as needed.
• Other duties and tasks as assigned.

Required Skills & Qualifications:

• Knowledge of application development, systems engineering, and network engineering to develop security requirements and enterprise risk assessment methodologies
• Previous experience working within industry and government compliance standards and requirements including FedRAMP, FISMA, NIST, or DoD SRG/RMF required we want to hear from you.
• Experience with Configuration Management (Terraform, Ansible, etc.)
• Experience with the setup/configuration/operation of CI/CD pipelines and source code control (e.g.GitLab, GitHub, Terraform)
• Experience reviewing and updating FedRAMP System Security Plan (SSP), policies, and procedures
• Familiarity with SOC2, ISO 27001 standards, CMMC
• Demonstrate technical experience on cloud platforms (e.g., AWS, Google Cloud, or Azure) with a heavy emphasis on GCP
• Experience developing and documenting operational and security process and procedures (patching, product updates, account management, change management, etc.)
• Experience with automated configuration management and deployment using tools such as Ansible, Puppet, Chef, and Python

Life at ForgeRock:

We believe in and facilitate a flexible, collaborative work environment. We’re growing quickly, but remain true to the innovative, can-do startup values that got us here. Most importantly, we keep hiring talented, smart, fun, and genuinely nice people because that’s who we want to succeed with every day. 

Here are just a few of the things that make ForgeRock special:

• A company culture that empowers you to do your best work.
• Employee Resource Groups that create a sense of belonging for everyone.
• Regular company and team bonding events.
• Competitive benefits and perks.
• Recognition programs that reward employees with meaningful experiences.
• Global volunteering and community initiatives

ForgeRock is the collective sum of all our individual experiences, backgrounds and influences and we pride ourselves in growing and learning together. We are committed to building an inclusive and diverse environment where everyone’s individuality is respected and everyone has an Identity. In recruiting for new colleagues, we welcome the unique contributions you can bring and encourage you to be your best self.

We are an Equal Opportunity/Affirmative Action employer.  All qualified applicants will receive consideration for employment without regard to race, color, religion, sex including sexual orientation and gender identity, national origin, disability, protected Veteran Status, or any other characteristic protected by applicable federal, state, or local law.