We are looking for a technical hands-on and passionate Cloud Security Analyst to join our Security team
Bringing your AWS experience and security knowledge, you will partner with cross-functional teams, specifically our Site Reliability Engineering (SRE) team, to monitor and assess our cloud network, server and service architecture
In addition, you will have the opportunity to work with the latest and greatest technology and be a part of a fast growing and agile organization that promotes open and friendly communication
Monitor application of information security/assurance policies, principles, and practices
Be responsible of designing, implementing, and securing cloud solutions for end-to-end security
Work with SRE to review and assess cloud network IT architecture
Automate enforcement of Cloud compliance using Terraform and AWS Lambda functions
Participate in security reviews of service architectures and act as Subject Matter Expert for engineering teams
Develop policy and documentation for security best practices for technologies new to the company and produce metrics and reports on the cloud security posture of our systems
Role and Responsibilities
Fundamental understanding of AWS Cloud services: VPC, EC2, Storage (S3, RDS), EMR, IAM, KMS, etc
10+ years hands-on experience with AWS
Good understanding of information security concepts and compliance controls.
Professional experience with AWS Security (IAM, Networking, VPN, configurations, monitoring).
Minimum 6 years of professional experience using Infrastructure as code (Terraform).
Minimum 6 years of programming experience using Python, Java or Bash.
Experience in incident response and digital forensics including data collection, examination and analysis.
Experience using Linux operating system.
Excellent written and verbal English communication skills - must be able to write documents and articulate and present complex security concepts and solutions to various parties (technical and non-technical) at various levels in the organization. French is an asset.
Demonstrated skill at implementing complex security controls and configurations to cloud based software and networks.
Nice to Haves (assets):
Experience with SIEM (security information event management) such as Splunk, Sumo Logic, etc
Experience with Kubernetes and Docker
AWS Certified Solution Architect - Associate or Professional
AWS Certified - Security Specialty
CISSP (Certified Information Systems Security Professional)