Image Loading

Staff Security Engineer & Tech Lead

Job Description

About JumpCloud
JumpCloud® delivers a unified open directory platform that makes it easy to securely manage identities, devices, and access across your organization. With JumpCloud, IT teams and MSPs enable users to work securely from anywhere and manage their Windows, Apple, Linux, and Android devices from a single platform. JumpCloud is IT Simplified.

About The Team
As a Staff Security Engineer and Tech Lead on DevSecOps, you will be responsible for designing and developing software solutions for protecting data and infrastructure deployed into the cloud. You will collaborate with SecOps, GRC, and other security functions, gaining exposure to a broad range of security domains.

What We Are Looking For

JumpCloud is looking for a Staff Security Engineer, Tech Lead on the DevSecOps team focusing on building and maintaining infrastructure, software, and automation to monitor and mitigate attacks and vulnerabilities across JumpCloud products and services. You will lead a team based in the TRT/IST time zones responsible for ensuring JumpCloud products' integrity and keeping JumpCloud users safe. A US-based DevSecOps team is already in place and we are looking to build out a global team as an extension of the current team.

What You Will Be Doing

  • Help with interviewing, building out, and leading a brand new team
  • Lead the design and maintenance of infrastructure, including custom software and vendor integrations, to meet advanced security needs for Product and Infrastructure Security
  • Develop and implement policy enforcement automation and comprehensive reporting systems
  • Set up data ingestion, as needed, for the SIEM or other tooling
  • Collaborate with DevOps and Developer Enablement teams outside of the US to embed security best practices and establish guardrails for developers
  • Conduct and oversee threat model reviews of product features and architectures, providing strategic guidance
  • Mentor and guide service/feature teams in secure software design principles

You Have

  • 7-10 years of experience in the field of security engineering with an extensive background and experience in software development and architecture
  • Substantial production experience with AWS and GCP
  • Proficient in writing Golang
  • Extensive experience in Terraform (HCL) and Kubernetes, including containerization technologies
  • Proficiency with CI/CD tools, particularly GitHub Actions
  • Exceptional written and oral communication skills, with the ability to convey complex security concepts
  • Proven ability to lead cross functional projects and teams

You are also an expert in one of the following are:

  • Red teaming/internal pentesting
  • Product Security (ProdSec)
  • Including threat modeling and secure architecture design/review
  • Authentication protocols (SAML, OAuth, LDAP, etc.)
  • Mobile application security (iOS and Android)

Bonus Points For Experience With

  • Open Policy Agent (OPA)
  • Open source security tools
  • Data pipeline tooling
  • Certificate infrastructure
  • Distributed systems
  • Working on core OS (Windows, Mac, Linux) APIs

Personal Characteristics We Are Looking For

  • Visionary leadership with a focus on innovation in security
  • Results oriented, self driven, and able to work independently with minimal supervision
  • High level of integrity with a commitment to accountability
  • Excellent communication skills, capable of articulating complex ideas clearly
  • Creative problem-solving abilities with a passion for security

Role Requirements

  • You must overlap and work at least 5 hours within US Central Time business hours (e.g., 9:00 AM - 2:00 PM Central Time)
  • You must be available for on-call (after hours) duties for any internal tools/services this new team might own
  • You must be willing to support the Security Operations team during incidents in performing ad-hoc queries, forensics, etc.
     

Skills

  • Devops
  • Software Architecture
  • Software Development
  • Kubernetes
  • AWS
  • CI/CD
  • Golang

Education

  • Master's Degree
  • Bachelor's Degree

Job Information

Job Posted Date

Dec 04, 2024

Experience

7 to 10 Years

Compensation (Annual in Lacs)

Best in the Industry

Work Type

Permanent

Type Of Work

8 hour shift

Category

Information Technology

Copyright © 2022 All Rights Reserved. Saas Talent