backgo to search

lead cloud security engineer for a gaming company

bullets
Security.CloudAWS Cloud Security, Amazon AWS Security, AWS Config, AWS Fargate, AWS Key Management Service, AWS Organizations, AWS Secrets Manager, AWS Security Hub, Amazon IAM, Lambda
bullets
Colombia
warning.png
Sorry, the job is expired

Currently, we are looking for a remote Lead Cloud Security Engineer to become a part of the global team.

The customer is an American video game and software developer and publisher, developing a commercially available game engine that also powers their internally developed video games.

responsibilities
  • Implement and maintain cloud security solutions in large cloud enterprise environments (AWS, GCP, Azure) with thorough knowledge of security systems engineering, security best practices and compliance
    • Work across various security domains such as Identity and Access Management, Privileged Access Management, Data Protection and its application, Data Loss Prevention, Cryptography, Cloud Configuration Security, Security Operations, Threat & Vulnerability Management, Disaster Recovery, DevSecOps (IaC), and custom scripting around it
      • Plan, design and implement security solutions for multi-cloud systems and workloads
        • Build cloud-native security tooling (event-driven, on-demand, etc.)
          • Build custom wrappers around existing 3rd party solutions to achieve desired results
            • Triage detected vulnerability/threat and provide working remediation/patch
              • Map industry-standard security requirements to available security controls
                • Onboard cloud accounts/teams to existing security systems (both technical and procedural)
                  • Identify, analyze and utilize best security practices and compliance requirements before security system’s implementation
                    • Collaborate with adjacent teams (engineering, IT, database, security operations, etc.) to implement security hardening or fix a vulnerability
                      • Be self-sufficient, proactive, organized, time and goal-focused
                        • Communicate clearly both verbally and in writing
                          requirements
                          • 5+ years of AWS cloud security experience (Lambda, SQS, SecurityHub, Config, GuardDuty, Macie, Eventbridge, SSO, API GW, etc.)
                            • Direct Security-focused education (Bachelors+) OR proven equivalent production experience
                              • Experience participating in at least one cloud security production project
                                • Security engineering experience in at least one business domain (Game development is desired)
                                  • Experience configuring security controls and policies (based on NIST SP 800-53, ISO27001, SOC2, etc.)
                                    • Understanding of at least one compliance/regulation such as ISO 2700x/PCI DSS/HIPAA/HITRUST/GDPR/SOX/FedRAMP
                                      • Able to work closely with other project team roles (developers, BA, testers, architects, managers)
                                        • Experience in bug/development tracking/change management systems (Jira, Rally, ServiceDesk, ServiceNow, GitHub, Bit Bucket, etc.)
                                          • Expected to follow and understand a defined security process, train other team members, and contribute to process improvement
                                            • Expected to follow Agile development methodology (Scrum, Kanban, etc.)
                                              • Hands-on proficiency and strong engineering background
                                                • Proven hands-on experience in at least one of: Python, Golang, Nodejs, Bash, Powershell
                                                  • Proven hands-on experience with any of the: terraform/terragrunt, CloudFormation, Pulumi, Ansible
                                                    nice to have
                                                    • Scripting/software development experience is a huge advantage (Golang is desired)
                                                      • Experience in service-oriented projects is an advantage
                                                        • Nice to have 1+ Security Certification (AWS Security Specialty/AWS Security Architect)
                                                          • Nice to have 3+ security tooling (AWS Config, SecurityHub, Key Management service, Fargate, Organizations, Cloudtrail, Secrets Manager, AWS IAM, Eventbridge)
                                                            • Professional Security Certifications such as CISSP/CISM/CISA/ECSA/CCSK/SSCP is a plus

                                                              benefits for locations

                                                              location.svg

                                                              For you

                                                              • Prepaid Medicine with Colsanitas for you and your legal dependents 
                                                              • MetLife Life Insurance for you 
                                                              • Thousands of projects for top brands
                                                              • Stable income

                                                              For your comfortable work

                                                              • 100% remote work forever
                                                              • Free licensed software
                                                              • Possibility to work on your own device (BYOD)
                                                              • Stable workload
                                                              • Relocation opportunities
                                                              • Flexible engagement models

                                                              For your growth

                                                              • Free trainings for technical and soft skills
                                                              • Free access to LinkedIn Learning platform
                                                              • Support from a personal Skill Advisor
                                                              • Language courses
                                                              • Free access to internal and external e-Libraries
                                                              • Access to internal communities and competency centers
                                                              • Certification opportunities
                                                              subscribe to EPAM Anywhere vacancies!Hundreds of open jobs for Software Engineers, QA, DevOps, Business Analysts and other tech professionals
                                                              Girl in front of laptop

                                                              looking for something else?

                                                              Find a vacancy that works for you. Send us your CV to receive a personalized offer.