Staff Security Engineer, Cloud Infrastructure
Chicago, IL; Bellevue, WA; San Francisco, CA
Flexport
Cut costs, automate workflows, reliably move goods, go carbon-neutral, and improve your supply chain from end to end. It all starts here.Enable Flexport to become the most trusted company in global trade.
The Opportunity:
Flexport helps more than 10,000 clients and suppliers lead all aspects of their supply chain operations. Started in 2013, we've raised over $1.3B from investors that include the Founders Fund, Google Ventures, First Round Capital, Bloomberg Beta, Y Combinator, Wells Fargo, & Softbank.
With offices on three continents, our team is as global as our client base and we’re excited to continue building a product and service they love. Wherever you are, whichever role you play, you’re guaranteed to share your day with committed, encouraging, and resourceful team members.
Flexport is looking for Security Engineers to help Flexport establish itself as the most trusted company in the global trade ecosystem. As Security Engineer, Cloud Infrastructure, you will be responsible for enabling visibility across our cloud environments, deploying and managing commercial security tools, building integrations, automation and custom tools to bridge gaps.
You Will:
- Partner with engineering, infrastructure, and security teams to develop, deploy, and maintain secure cloud architectures aligned to internal standards and current best practices.
- Implement monitoring capabilities that enable continuous asset inventory and posture assessment across cloud operating environments.
- Deploy and manage secret and privileged access management technologies to enable secure access, application of least privilege principle and accountability for change/configuration management.
- Design and implement Identity and Access Management capabilities in close partnership with our Engineering and Product teams.
- Implement and administer security technology controls (WAF, RASP, DDoS, anti-malware, forensics, IDS, DLP) across cloud infrastructure.
- Integrate cloud applications, infrastructure, and security tools with SIEM/SOAR platforms that consolidate visibility across the environment for continuous monitoring, incident detection, analysis, forensic artifact collection, containment, eradication, and recovery.
- Assess data flows across the cloud environment to identify process weaknesses or technology gaps that could result in privacy or security breaches.
- Participate in security incident response, red team and penetration testing exercises, bug bounty response, and audit support.
- Prepare reports, presentations, and newsletter items for communicating with management and teams across the company.
- Create a culture of transparency, information sharing, and collaboration through the development of excellent documentation, mentoring of junior team members, and living Flexport’s values.
You Should Have:
- Strong interpersonal and communications skills
- 8+ years of progressive security experience in a fast-paced global environment.
- 4+ years of experience with major IaaS and PaaS cloud platforms and best practices for monitoring and securing such environments.
- Experience with container technologies, and software-oriented architecture.
- Experience with DevOps and SaaS environments.
- Experience with IAM, secrets and privileged access management, and PKI.
- Experience with SIEM and security orchestration technologies.
- Experience with WAF, RASP, DDoS, DLP, network security technologies.
- Experience automating security tasks in languages such as Go, JavaScript, Python, or Ruby.
- Excellence in problem-solving, strategic thinking, and collaboration with cross-functional teams.
About Flexport:
We believe trade can move the human race forward. That’s why it’s our mission to make global trade easy for everyone. Flexport is building the platform for global logistics, empowering buyers, sellers and their logistics partners with the technology and services to grow and innovate. Today, companies of all sizes—from emerging brands to Fortune 500s—use Flexport technology to move more than $10B of merchandise across 112 countries every year.
Worried about not having any logistics experience?
Don’t be! Our mission is to make global trade easy for everyone. That’s why it’s important to bring people from diverse backgrounds and experiences together with our industry veterans to help move the global logistics industry forward.
We know this industry is complex. That’s why we invest in education starting day one with Flexport Academy, a one week intensive onboarding program designed specifically to set every new Flexport employee up for success.
At Flexport, our ability to fulfill our mission of making global trade easy for everyone relies on having a diverse, dedicated and engaged workforce. That is why Flexport is committed to creating and nurturing an environment where anyone can be their authentic self. All qualified applicants will receive consideration for employment regardless of race, color, religion, sex, national origin, age, physical and mental disability, health status, marital and family status, sexual orientation, gender identity and expression, military and veteran status, and any other characteristic protected by applicable law.
Tags: Automation Cloud DDoS DevOps Forensics IaaS IAM IDS Incident response JavaScript Malware Monitoring Network security PaaS Pentesting PKI Privacy Python Red team Ruby SaaS SIEM SOAR
Perks/benefits: Career development Transparency
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open IT Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Forensics-related jobs
- Open Kubernetes-related jobs