Security Engineer - Cloud Infrastructure
Remote in the U.S. and Denver/Louisville, CO
JumpCloud is looking for a Security Engineer focusing on Cloud & System Infrastructure to monitor and mitigate attacks across JumpCloud products and services.
You'll be someone JumpCloudians across the company depend on and trust to respond quickly and effectively in a crunch. The outstanding communication and collaboration skills needed to work in partnership with diverse stakeholders.
Most importantly, you will become a critical member of the team responsible for ensuring JumpCloud products' integrity and keeping JumpCloud users safe.
About the Role:
As a DevSecOps Engineer in the Security Engineering Team, you will be responsible for designing and developing innovative security solutions for protecting data deployed into the cloud. You'll set and sustain the security vision and strategy for our deployments across infrastructure and software, leveraging JumpCloud products where applicable.
Furthermore, you will be both hands-on technical, collaborative and influential. You will be expected to communicate with cross-functional teams in Product Management, Development, Platform Engineering and DevOps/SRE to drive security throughout the entire product directly.
You'll be backed by JumpCloud's Manager of Security and Director of Engineering Cloud Operations, the company's leadership team, and a cross-functional team of skilled engineers from various perspectives, all working with a singular focus of maintaining our customer's trust. You'll be exposed to the reality of how JumpCloud functions on a technical and process level and will build a comprehensive base of knowledge around how it all works together. In doing so, you'll be playing a role in keeping JumpCloud secure and compliant, bringing security to our company's forefront.
Provide guidance and subject matter expertise in cloud infrastructure, application & data security to engineering and operation teams across the company
Apply a risk-based approach to make the right security decisions and priorities
Identify gaps in existing cloud security architecture and design and recommend changes or enhancements
Build tools and automation to implement "security as code" using cloud services and CI/CD pipeline
Partner with engineering and operation teams to integrate security controls into continuous integration, delivery, and deployment processes
Build strong relationships with JumpCloud's cross-functional teams and cultivate a culture of security awareness and ownership
Work on critical areas to develop security baseline for cloud, container, and application and integrate it into the CI/CD pipeline
Implement security architecture, methods, and controls required to meet security, compliance, and audit requirements
Qualifications And Skills
Hands-on experience and in-depth technical knowledge in cloud security, computer and network security, authentication and security protocols (TLS, SAML, Oauth, etc.)
Understanding of software security architecture and design, SDLC, and the ability to articulate best practices for application security
Hands-on experience working with microservices and container-based deployments and orchestration tools (e.g., Kubernetes, Docker, EKS, GKE, Terraform).
Hands-on experience with the development, deployment, and automation of security solutions with CI/CD in an AWS environment
In-depth knowledge of network-based, system-level, and application layer attacks and mitigation methods
Hands-on experience with a broad range of AWS and non-AWS security technologies including VPC, IAM, AWS WAF, KMS,etc.
Expertise in cloud automation tools such as Terraform, CloudFormation, Ansible, etc.
Strong experience partnering with development teams; driving to improve the platform to provide an excellent user experience.
Strong applied cryptography and its implementation is a plus (asymmetric and symmetric key encryption, key management, etc.)
Effective written and oral communication with multiple levels of leadership involving both the business and technical sides of the business
Superb communication and leadership capacity; ability to partner effectively with diverse company stakeholders.
Views security as an enabler, not an inhibitor to innovation.
Ownership and Accountability
High Level of Integrity
Creative Problem Solver
Passionate about Security
Do you enjoy solving challenging problems using the latest technologies within a great team? Is knowing your work will be highly visible and mission-critical, a key component of your career next step? At JumpCloud, we're looking for best-in-class talent to help define the future of modern identity and device management from the ground up.
We built a disruptive new technology called Directory-as-a-Service®. It is reinventing a two-decade-old monopoly, giving thousands of organizations across the globe freedom of choice with their IT solutions. We provide companies the ability to remotely manage and control all of their organization's identities, devices, & resources on a single, comprehensive, cloud-based platform. That means doing it better, faster, easier, and more securely by staying on the bleeding edge of technology.
Where you'll be working
We have two offices in Colorado, one in Louisville and one in downtown Denver. Once we reopen offices, you will have the opportunity to work from one of our office locations, flex your time, or remain fully remote (in the U.S.).
If you thrive working in a fast, SaaS-based environment and you are passionate about solving challenging technical problems, we look forward to hearing from you!
JumpCloud is an incredible place to share and grow your expertise! You’ll work with amazing talent across each department who are passionate about our mission. We’re out of the box thinkers, so your unique ideas and approaches for conceiving a product and/or feature will be welcome. You’ll have a voice in the organization as you work with a seasoned executive team, a supportive board and in a proven market that our customers are excited about.
We're an equal opportunity employer. All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran or disability status.
Please submit your résumé and brief explanation about yourself and why you would be a good fit for JumpCloud. Please note JumpCloud is not accepting third party resumes at this time.