AWS Security Specialist

Sonar’s industry-leading solution enables developers and development teams to write clean code and remediate existing code organically, so they can focus on the work they love and maximize the value they generate for businesses. Its open source and commercial solutions – SonarLint, SonarCloud, and SonarQube – support 29 programming languages. Trusted by more than 300,000 organizations globally, Sonar is considered integral to delivering better software.
The Impact you can haveSonarSource has an objective to ensure the security of our products and the security of our organization meet stringent standards to demonstrate to our rapidly growing customer base how seriously we take security.To achieve this goal, we are looking for a talented Security Specialist with strong AWS experience to join the team to continue to raise the bar for our security processes, procedures, and controls and to ensure that, across our cloud platform, our software delivery pipelines and our operational activities, they are designed, implemented and monitored to levels that will satisfy an independent audit.

On a daily basis, you will

• Be responsible for ensuring that the company's digital assets are protected on the AWS platform, and on-premise by preventing, detecting, and managing cyber threats
• Designing, implementing and reviewing AWS architectures
• Designing, implementing, and monitoring robust security processes and controls
• Conducting security assessments through vulnerability testing and risk analysis
• Working with the product teams to implement controls and resolve vulnerabilities
• Work with service management to own security incidents and analyze any security incidents to identify the root cause
• Contribute expert knowledge for AWS best practices, incident response, business continuity, disaster recovery plans, and vendor management
• Periodically reporting on risk and key indices

The skills you will demonstrate

• You have a solid experience in the implementation of AWS Managed Services through Infrastructure as Code such as CDK and CloudFormation
• You have a keen interest and understanding of the cyber security risks associated with various technologies and how to manage them through tactical and strategic controls
• You have analytical and problem-solving skills to identify and assess risks, threats, patterns, and trends
• You have an excellent working knowledge of various security technologies such as network and application firewalls, intrusion detection and prevention, vulnerability scanning, composition analysis, and anti-virus
• You have an excellent working knowledge of a broad range of AWS Managed Services
• You have solutions for AWS monitoring, log analysis, and alerting tools
• You are comfortable working with Linux, Git, Python, Shell, PostgreSQL
• You have an interest in deepening your experience in Security Operation domains, such as; Attack analysis, Forensic analysis, and Threat intelligence
• You either hold or are in the process of obtaining AWS Security Specialty certification
• You have knowledge of Azure and Google Cloud services and security practices
• You are a friendly, enthusiastic, and organized team player
• You actively share your knowledge and give and receive feedback, to improve the team and yourself
• You are fluent in English, both written and spoken

Why you will love it here
• Safe work culture - we value respect, kindness, and the right to fail.• Flexible hours - we schedule our days in order to be effective at work, while also being able to enjoy life’s important moments.• Great people - we value people skills as much as technical skills and strive to keep things friendly and laid back. Still, that does not prevent us to be passionate leaders in our domains. Our 300+ SonarSourcers from 33 different nationalities can relate!• Work-life balance - keeping a healthy work-life balance is important. This is why we have a hybrid work policy and some people prefer working some days from home.• Always keep learning - in an ever-changing industry, learning new skills is a must, and we're happy to help our team to acquire them.
What we do
Sonar was started by a team of developers that wanted to change the way code is built in an agile development process. The company was created to develop the open-source tool SonarQube, which is now the standard in code quality management with over 350,000 instances deployed today. Every day we are focused on solving developers’ next big problem.
Who we are
At Sonar we believe in people, excellence, and delivery. We’re a team of problem solvers and overachievers who seek out others who are also passionate and relentless in their respective missions. We want to work with people who are ready to fasten their seat belts and be part of an incredible ride. We work hard not because we’re told to, but because we genuinely love what we do and do what we love. If there’s one main message we want you to remember about us, it’s that we push others to be best in class at whatever they do: choose your battle, innovate, take risks, and lead change. Join us; we’ll be smarter and stronger together.
If this sounds like you, apply now!