Cloud Security Engineer
United States - Remote
Applications have closed
Trustworthy Company
Organize, protect, and optimize important information — in one place.We’re a venture-backed startup on the verge of creating a new category we’re calling the Family Operating System™, and we want you on our team. At Trustworthy our mission is to keep families organized and prepared for the unexpected by delivering a secure and beautiful online service that keeps their most important information up-to-date and accessible. Trustworthy is the family’s single destination point for everything from financial accounts, life insurance policies, and estate documents to family stories, traditions, and passport numbers.
We are seeking a seasoned Security Engineer who is a self-starter, can document their own work, communicate well with the team and is passionate about leading dev ops and wants to have fun on a team with resources and a desire to grow.
Responsibilities
- Triage reports from our security monitoring tools with the engineering team
- Build and maintain scalable high-quality backend services and productivity tools
- Maintain a strong security awareness through frequent assessments and software architecture design processes
- Build automation to continuously assess security risks around our AWS cloud infrastructure and further SaaS tools we integrate with like GitHub
- Proactively work to identify areas for performance gains including data and scaling challenges
- Define security requirements (encryption, backups, data retention, etc.) together with our backend and web teams and automate their enforcement
- Design, create and support security tests in CI/CD pipelines, to include IAST, SAST, DAST, container scanning, API scanning, and secret detection
- Support new projects and features early in the process with your expertise; Create security requirements and test cases where needed
- Apply security to cloud technologies (Managing secrets, Securing CD pipeline, Secure Infrastructure as Code, Container Security etc.)
- Improve our cloud security configurations through active Terraform improvements and reviews and patch management
Requirements
- Exceptional operational troubleshooting capabilities
- Process-oriented with great documentation skills
- 3+ years overall AWS experience
- 3+ years of hands-on experience with Infrastructure as Code, preferably with Terraform and CloudFormation
- 2+ years of hands-on experience of programming in languages such as Python, Javascript, Go or similar
- Experience with automating cloud-native technologies, deploying applications, and provisioning infrastructure
- Good knowledge of Linux Basics and networking fundamentals, IP routing, load balancing and firewalls, VPN, DNS
- At least 2 year experience as a SecOps engineer, security engineer, senior reliability engineer, working in a Security Operations Center (SOC), or equivalent education
- Infrastructure as Code experience (e.g., Terraform)
- Have at least 1 year experience working with AWS SecurityHub or equivalent
- Experience with understanding CVEs and remediating security vulnerabilities
Benefits
- Healthcare benefits - 80% for you, 60% for your family. Medical, dental, vision.
- Equity benefits - Generous equity in the company you're helping to build.
- Generous vacation - Unlimited vacations. No one can work all the time.
- Home office setup - Set up your work environment and make it work with a sitting/standing desk + all the HW and SW you need. 100% on us.
- Annual team meetings - Team cultural events online and in person. We're remote but we're not distant ;-)
- Birthdays off! - We celebrate your birth and you take the day to enjoy and relax.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: APIs Automation AWS CI/CD Cloud DAST DevOps DNS Encryption Firewalls GitHub IAST JavaScript Linux Monitoring Python SaaS SAST SecOps SOC Terraform VPN Vulnerabilities
Perks/benefits: Health care Home office stipend Startup environment Team events Unlimited paid time off
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Security Operations Engineer jobs
- Open Information Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Sr. Security Engineer jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open ISO 27001-related jobs
- Open Clearance-related jobs
- Open Windows-related jobs
- Open Application security-related jobs
- Open Network security-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open DevOps-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open CI/CD-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs