Key skills
AWSAzureGoogle Cloud PlatformCloud SecurityTerraformAnsibleGNU/LinuxBashPythonGolangCloudFlare WAFCloud IAM architecturesSecrets ManagementPKIEncryption at restEncryption in transitContainer SecurityKubernetes Security HardeningService Mesh TechnologiesFedRAMPHIPAAISO 27001NISTSOC2CISSPCISMCCSKGoAmazon Web ServicesGCPGoogle CloudKubernetesServerlessIAMService MeshCloudflareCommunicationWAF
About this role
Collibra is seeking a skilled security professional to join their Cloud Security Team as a Senior Engineer, Security Operations & Engineering. The role involves designing, implementing, and operating security controls across a multi-cloud environment, while serving as a technical authority for cloud security within the organization.
Responsibilities:
- Helping to develop architectural requirements and corresponding engineering processes and technologies to support Collibra’s cloud-native platform
- Design and tune cloud-native detection rules and threat models for AWS GuardDuty, Microsoft Defender for Cloud, and GCP Security Command Center
- Conduct continuous vulnerability assessments of cloud workloads, container images, and serverless functions
- Develop, continuously improve, and ensure compliance with controls built for the cloud-native platform
- Partner with engineering teams to prioritize and drive remediation of cloud security findings
- Plan, organize, and manage multiple responsibilities from various stakeholders and sometimes competing requests to achieve desired objectives
- Maintain and update CloudFlare WAF rules to work with the Collibra product
- Evaluate and deploy cloud workload protection platforms (CWPP) and container security tooling
- Assist with technical response efforts for cloud security incidents, perform forensic analysis, and contribute to root-cause investigation
- Write production-quality code in Python, Golang/Go, or similar languages to build internal security tooling and automation
- Integrate security tooling into developer workflows to reduce friction while improving security outcomes
- After hours on-call support may occasionally be required
Requirements:
- Minimum of 8 years IT/Security experience across a wide range of disciplines, including a minimum of 2 years experience with Cloud Security or Cloud Engineering in Google Cloud Platform (GCP) and/or Amazon Web Services (AWS)
- Deep hands-on expertise across at least two major cloud platforms (AWS, Azure, GCP), with working knowledge of the third
- Experience with configuration management and Infrastructure as Code tools like Terraform, Ansible, or similar tools
- Competency with GNU/Linux, Bash, and Python, Golang/Go or equivalent
- Hands-on experience with WAF rules such as CloudFlare or equivalent technologies
- Demonstrated experience with cloud IAM architectures, secrets management, PKI, and encryption at rest/in transit
- Experience with container security, Kubernetes security hardening, and service mesh technologies
- Ability to work collaboratively in an organization with stakeholders distributed across various time zones spanning UTC +2 to UTC-8
- Experience with regulatory requirements and/or frameworks (i.e.: FedRAMP, HIPAA, ISO 27001/2, NIST,, SOC2, etc.)
- Advanced presentation and communication skills
- Desired certifications include: CISSP, CISM, CCSK, or similar
- A bachelor's degree or equivalent related working experience is required
- This position is not eligible for visa sponsorship
- Because this role supports the US government, it is required that this candidate be a US citizen who resides on US soil