Staff Cloud Security Engineer
LATAM
Incode
Incode offers the world's most advanced identity verification & authentication system. Power a world of trust with simple, secure & fast identity experiences.REIMAGINE TRUST
Incode is the leading provider of world-class identity solutions that is reinventing the way humans authenticate and verify their identities online to power a world of digital trust.
Through our revolutionary identity solutions, we are unleashing the business potential of universal industries including finance, government, retail, hospitality, gaming and more, by reducing fraud and transforming human interactions with data, products, and services.
We’re in the process of rapidly scaling our diverse global team and we’re looking for entrepreneurial individuals and leaders who are curious, driven, and excited by ownership to join a Unicorn-status scale-up!
The Opportunity
We seek a trustworthy and proactive Staff Cloud Security Engineer as the technical thought leader and driver of continual cloud security across Incode. As a key security hire at Incode, you will work to ensure a continual and secure cloud security posture while building automation and infrastructure to support our security capabilities and operations across multi-cloud SaaS, hybrid, and private cloud solutions. In close collaboration with our security team members, the compliance team, the SRE team, and product engineering teams, we share the responsibility to identify, protect, detect, respond, and recover from cyber threats.
If you are a hands-on Cloud Security Engineer passionate about taking a risk-based, proactive, and automated approach to securing all cloud assets in our corporate and product at Incode, we would love to chat with you. This is an exciting opportunity to shape and build a forward-leaning cloud security program and directly influence our overall security strategy.
Responsibilities
- Discover the top security challenges we face and partner with teams across the company to be hands-on in implementing your security recommendations.
- Build security controls that detect, prevent, and correct cloud vulnerabilities in our very complex, multi-cloud, hybrid and private cloud environment.
- Architect and design infrastructure to support the security team’s mission and ensure well-architected fundamentals (logging, identity and access controls, etc).
- Build, deploy, and manage production security tools and services to monitor networks, endpoints, and cloud workloads
- Build, maintain and evolve a reliable and low-touch infrastructure using technologies such as Terraform, Kubernetes, and immutable images
- Facilitate the security baked into our cloud infrastructure for our applications and customer data
- Contribute changes to production security infrastructure and platforms (e.g., configure GuardDuty or AWS Config, Kubernetes, VPNs, Secrets Manager, etc)
- Help your peer engineers grow their own security reasoning and knowledge
Qualifications:
- 5+ years experience deploying and securing services on public cloud infrastructure
- Detailed understanding of cloud and network security
- Detailed understanding of Kubernetes components and cloud-native security
- Fluency in one or more programming or scripting languages
- Experience building, deploying, and customizing security tools to address threats and lower risk: CSPM, vulnerability scanners, static analyzers, web application firewalls, IDS/IPS, endpoint security monitoring, etc.
- Knowledge of networking and web protocols (TCP/IP, HTTP, TLS, REST), and the ability to analyze traffic to find anomalies
- Depth and experience in modern cloud technology components and deployment patterns: virtual machines, containers, Kubernetes, serverless, infrastructure as code, etc.
- Depth and experience with at least one common cloud service provider: AWS, GCP, Azure
- Understanding of security weaknesses, exploits, attacks and mitigations
- Outstanding written and verbal communication
- Experience with most of the following: AWS security tools (GuardDuty, AWS Config, CloudTrail), Terraform, Kubernetes, Containers, Open Policy Agent, Secrets Management, SIEM
- Excellent collaborative skills
- Outstanding written and verbal communication
Preferred Experience and Certification:
- SaaS Startup experience in security focused industries, such as fintech, security software and services, healthtech, identity and access management.
- Familiarity in continuous integration and Infrastructure as Code
- Experience designing, and optimizing high throughput ETL pipelines
- Possess a breadth of knowledge and experience across the information security domain, such as endpoint security, detection engineering, incident response, application security, or automation
- Experience as a software engineer, infrastructure engineer, or site reliability engineer
- Experience detecting or responding to threats in Kubernetes (K8s), AWS, and Linux environments
- Certifications in AWS, GCP or Azure, Cloud Security, Application Security, and/or Offensive Security (eg. AWS Security Specialty, CCSP, CompTIA Cloud+, Security+, OSCP, GWAPT, GPEN, CEH, CISSP, etc).
8 Aspects of our Culture:
- Values are what we value
- High performance
- Freedom & responsibility
- Context, not control
- Highly aligned, loosely coupled
- Continuous Feedback
- Pay Top of Market
- Promotions & Development
- Learn more about Life at Incode!
Benefits & Perks:
- Meaningful Equity
- Flexible Working Hours & Workplace
- Open Vacation Policy
- Wellness Program
- International Travel Opportunities
- Additional benefit package according to location (401k, medical insurance, etc.)
Equal Opportunities:
Incode is an equal opportunity employer, committed to creating a diverse and inclusive work environment. We take great pride in having an inclusive, diverse, and global team and are always on the lookout for talented, passionate people from all backgrounds and walks of life.
Applicant Data Privacy:
We will only use your personal information in connection with Incode’s application, recruitment, and hiring processes.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security Automation AWS Azure CCSP CEH CISSP Cloud Compliance CompTIA CSPM Endpoint security Exploits Finance FinTech Firewalls GCP GPEN GWAPT IAM IDS Incident response IPS Kubernetes Linux Monitoring Network security Offensive security OSCP Privacy SaaS Scripting Security strategy SIEM Strategy TCP/IP Terraform TLS VPN Vulnerabilities
Perks/benefits: Career development Equity Flex hours Flex vacation Health care Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs