Senior Security Engineer

The Senior Security Engineer is responsible for designing, implementing, supporting, and monitoring the security infrastructure for company assets, including AI/HPC environments, public cloud, and private cloud systems.

Responsibilities

• Conducting control and vulnerability assessments to identify security control weaknesses, evaluating the effectiveness of existing controls, and recommending remedial actions. This includes planning and implementing remediation efforts in collaboration with department specialists, vendors, and third-party contractors.
• Researching, evaluating, designing, testing, and recommending new or updated information security solutions. Collaborate with vendors and partners on Proof-of-Concept (PoC) evaluations and system requirements to assess their compatibility with the existing cloud architecture.
• Providing feedback and technical design advice to ensure secure architecture practices.
• Evaluating and reporting on compliance with security policies for cloud infrastructure and services. Plan, implement, and review controls and configurations to maintain a compliant security posture.
• Developing and validating baseline security configurations for operating systems, applications, networks, and network equipment.
• Maintaining comprehensive security guidance documentation, security services manuals, and contributing to the knowledge base to promote organizational learning.
• Performing technical deployments and utilizing troubleshooting methodologies, steps, and tools as needed.
• Participating in incident response and technical investigations. Act as the final escalation point for security incident support tickets, ensuring timely resolution.

Qualifications

• Strong knowledge of security, cloud, and HPC concepts.
• Deep Linux knowledge, understanding security of OpenStack IaaS/PaaS/SaaS services.
• Experience with security of K8s/OpenShift and containers.
• API Security, Web security, CI/CD security.
• Networking security and technologies like IPS, Firewalls, Anti-DDoS.
• Familiar with DevSecOps tools and automation concepts.
• Basic development skills in Python/Shell/API automation.
• Knowledge of industry-wide compliance frameworks and implementation requirements, like ISO 27001, NESA, CSA STAR, SOC1/SOC2, and PCI-DSS compliances.