Cloud Security Lead
RapidDeploy is looking for a Cloud Security Lead (aka Security DevOps Lead) lead with proven skills in security automation, infrastructure deployment and operations, and defensive excellence. This role will help shape the face of emergency communications by working to build highly-available and highly-secure systems that save people’s lives. The Cloud Security Lead will report directly to RapidDeploy’s CISO and work closely with a team of exceptional and dedicated software developers and engineers. This is a senior role meant for a creative, precise, and motivated person with a strong background in cloud-native solutions and modern software development processes and tooling.
Responsibilities:
- Work closely with product and platform teams to engineer and implement cloud security controls
- Design and implement Azure/cloud-based DevSecOps processes and tools
- Manage patch automation and security hardening for Azure infrastructure
- Deploy security automation services such as Puppet, Chef, and/or Terraform
- Secure microservices and hardening containers
- Harden virtual infrastructure (i.e. virtual machines and networks) to specified guidelines
- Tune security infrastructure (NGFW, WAF, and EDR) and provide incident response capability
- Develop security and compliance tools in support of DevOps processes
- Stay current on security industry trends and implement best practices within DevOps
Background:
- 2+ years of experience working with cloud solutions such as Azure
- 2+ years of experience in DevOps environments, maintaining security in CI/CD processes, and security SDLC processes
- 3+ years of experience with the development, deployment, and automation of security solutions in an enterprise cloud-based environment
- 1+ year of experience with SIEM, IPS/IDS, security operations, incident analysis, incident handling, vulnerability management or testing, log analysis, and forensics
Required Qualifications:
- Ability to work in a modern software company using agile processes
- Ability to work with multiple teams and to prioritize requirements
- Excellence in problem solving
- Excellent verbal and written communication skills
- Solid understanding of Azure Security Center
- Expertise in vulnerability management for both code and virtual infrastructure
- Expertise in microservices and automation for both containers and infrastructure as code
- Senior capability in the use of PowerShell and Python to deploy configurations and harden systems at scale
Recommended Qualifications:
- Ability to perform basic penetration tests using open source tooling
- Experience utilizing SIEM platforms
- Capabilities in NGFW and/or EDR
- Microsoft Certified: Azure Security Engineer Associate