• Develop and enforce security controls for 200+ AWS, GCP, and Azure cloud environments as well as a fleet of end-user laptops.
• Maintain and implement security tools, integrating commercial software with internal systems.
• Conduct and manage vulnerability scanning, collaborating with IT, Product Engineering, and other teams to address findings.
• Enhance runtime protection policies and SIEM parsing rules.
• Respond to security alerts, analyze logs and XDR findings via the SIEM for potential incidents.
• Champion automation using tools like Terraform, Ansible, and CloudFormation.
• Participate in incident response to investigate and remediate security events.
• Identify root causes of security issues, prioritize threats, and implement corrective actions, leveraging automation where possible.
• Develop and enforce access management strategies, focusing on single sign-on for AWS, Azure, Google Cloud, and other platforms.
• Advocate and enforce system security policies and user access plans.
• Oversee and participate in security assessments and audits, collaborating on remediation plans.
• Prepare and present technical reports and briefings.
• Educate colleagues on information security management.
• Conduct security reviews for proposed systems and applications as a project team member.

Required Qualifications:

• 3-5 years of experience as a Security Engineer, DevSecOps Engineer, or DevOps Engineer with a focus on security.
• AWS Certified DevOps Engineer or Solutions Architect, or equivalent certification in Azure or Google Cloud.
• Proficiency in at least one programming language (Python, Ruby, PowerShell, Golang, etc.) and/or one Infrastructure as Code framework (Terraform, CloudFormation, Ansible, etc.).
• Proven ability to design, test, and implement automation and technical solutions.
• Experience managing cloud environments and implementing DevOps concepts and CI/CD technologies.
• Experience with Enterprise-level Vulnerability Management and SIEM solutions.
• Familiarity with runtime protection and endpoint management solutions (e.g., TrendMicro CloudOne, SentinelOne, Automox, Rapid7 Insight Agent).
• Knowledge of industry and regulatory frameworks such as SOC2 and HITRUST.
• Experience with incident response scenarios.
• Excellent written and verbal communication skills.
• Strong attention to detail and passion for processes and systems.

Preferred Qualifications:

• Ability to participate in a 24/7/365 on-call rotation.

• Rewarding environment for high-performers.
• Exposure to cutting-edge technologies and services.
• Collaborative team valuing diverse perspectives and fresh ideas.
• Flexible working hours.
• Comprehensive benefits: Medical, Dental, Vision, HSA, Life, and 401K.
• Unlimited Vacation!

ClearDATA is an EEO/AA employer M/F/V/D.