Cloud Security Software Engineer
London, Tel Aviv, Zurich, or Remote
Snyk
Snyk helps software-driven businesses develop fast and stay secure. Continuously find and fix vulnerabilities for npm, Maven, NuGet, RubyGems, PyPI and more.All roles listed as ‘remote’ are available as remote within the same country.
We’re looking for an independent-minded, autodidact, and detail-oriented cloud security engineer to join our efforts to build a best-of-breed infrastructure-as-code security platform.
You would be working on our brand new infrastructure-as-code security product, expanding our security covers from source code down to the infrastructure. We recognize that developers are increasingly working with technologies like Kubernetes & Terraform, and it can be hard to stay secure and move fast - we provide that peace of mind with this product.
In this role, you would be responsible for the best practice security policies that we recommend developers adopt to stay secure—working closely with the product team to identify customer needs and staying close to the technologies and community to identify security best practices.
You’ll spend your time:
- owning and expanding our cloud security policies ruleset to cover the newest cloud services across AWS, Azure, and GCP
- creating threat models and attack scenarios for container orchestrators and cloud provider services
- evaluating the latest infrastructure as code tooling for their security controls, working to develop recommended security best practices
- converting cloud security whitepapers, documentation and API reference material to automated cloud security checks
- building technology for automating our capability to create policies quickly
- talking to our customers, making sure we’re building a product they truly love
- collaborating with your team, planning the most important projects to work on next
- sharing your security expertise by presenting to internal teams, and writing technical blog posts
You should apply if you:
- have experience with operating infrastructure on one or more public cloud platform providers (AWS /GCP/Azure) using infrastructure-as-code tooling
- have experience writing code across the stack
- have a software security mindset, you know the security and compliance best practices for AWS, Azure and Google Cloud
- ensure a high-quality code that can be safely co-authored in a fast-growing organization
- practice writing tests as an integral part of your software development life-cycle
- communicate proactively and have a team-first mindset
- love working in a fast-paced start-up environment that respects its engineers and customers
We’d especially love to hear from you if you:
- have experience with Open Policy Agent and have defined policies using Rego
- have experience with Kubernetes either as a stand-alone or as a hosted cloud-service (AWS ECS/EKS, GKE or Azure AKS)
- have experience with compliance programs (PCI, HIPAA, NIST, SOC II, etc.)
- have security research experience
- have a good track record of project leadership and mentorship of software engineers
- have strong community involvement (open source, conferences, meetups, etc.)
Interested?
Please apply below! We care deeply about the warm, inclusive environment we’ve created, and we value diversity - we welcome applications from those typically underrepresented in tech. If you like the sound of this role but are not sure whether you’re the right person, do apply anyway :)
About Snyk
We’re on a mission to make the world a safer place with more secure software.
We’re living in a world of digital transformation that is turning ever more industries into a software-development industry. Cyber security is taking centre stage for many companies, and demand for Snyk’s product is sky-rocketing!
Snyk has already been adopted by over 2.2M developers, including multiple leading enterprise customers such as Google, Salesforce and Intuit, who are using Snyk to find and fix vulnerabilities in their open source libraries and container images, empowering them to develop secure software, faster.
In March of 2021, we raised $300M in Series E funding at a $4.7 billion company valuation, just after securing an additional $200M in Series D funding in September 2020, and successfully closing two strategic acquisitions. On top of that, we doubled the size of our global team, and we’re not stopping there!
We believe open source software is a force for good, and we’re building Snyk to make it easier for developers who aren’t security experts to stay secure. Join us!
#LI-TO1
#LI-Remote
Tags: APIs AWS Azure Cloud Compliance GCP HIPAA Kubernetes NIST Open Source Terraform Vulnerabilities
Perks/benefits: Conferences Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Cyber Security Engineer jobs
- Open Product Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open IT Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open IT Security Engineer jobs
- Open Senior Cyber Security Specialist jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open SaaS-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open Security Clearance-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open CI/CD-related jobs