Senior Cloud Cybersecurity Engineer (IAM)
Remote, US
The Basics:
The Senior Cloud Cybersecurity (CCS) Security Engineer (IAM) will collaborate with Detection, Security, and Software Engineers to build, operate, and defend Tanium Cloud's Identity and Access Management (IAM) in AWS, Azure, and Kubernetes cloud hosting services. You will be an integral part of the Tanium Cloud security engineering for IAM, responsible for the design, implementation, and operation of preventative and detective controls to identify, assess, and counter risks and threats before impacting Tanium Cloud.
What you'll do:
- Build and operate Tanium Cloud's Identity and Access Management (IAM) in Azure, AWS, and Kubernetes as infrastructure-as-code and policy-as-code using DevOps methodologies for multiple CCS owned cloud environments.
- Design and implement our security strategy and controls with Security and Software Engineering teams for just-in-time and just-enough access for human and machine identities with Tanium Cloud services and cloud resources.
- Continuously evaluate and enhance the design and effectiveness of IAM security measures and establish an ongoing program to advance our IAM security and close gaps in our defensive posture.
- Proactively characterize unauthorized activity and malicious behaviors against our Tanium Cloud internal and external IAM services with Detection Engineers.
- Develop tailored IAM detections and enforcement policies, perform testing, and implement automation to monitor, assess, and audit security information using SecDataOps and detection engineering best practices.
- Stay up to date with the latest IAM security threats, vulnerabilities, and industry trends to proactively enhance security prevention and detection measures.
- Build, cultivate, and maintain positive relationships with internal customers to identify and facilitate solutions to increase the impact of the team's work
- Be on periodic on-call for triage of critical alerts from detections and systems
We're looking for someone with:
- Education:
- Bachelor's degree or equivalent experience
- Cloud Security, IT Security, or related technical field preferred
- Cloud IAM Security Engineering Experience
- 5-7 years of experience in cloud security prevention, detection, response for public cloud systems (e.g. AWS, Azure) within a DevOps environment.
- 5+ years of experience in building and operating cloud-based Identity and Access Management with AWS and Azure as code, including cloud organizations, account, identity, access secrets, role, and policy management for both humans and machines.
- 3+ years of hands-on experience in securing identity and access controls for cloud-hosted Kubernetes clusters and their workloads (i.e. custom RBAC roles, workload identities, Open Policy, Operator …
This job isn't fresh anymore!
Search Fresh JobsJob Profile
Remote
Benefits/PerksEquity awards Family planning benefits Flexible Spending Account Health savings account Volunteer time off
Tasks- Collaborate with engineers
AWS Azure CloudFormation Cloud Security Cybersecurity Cyber threat analysis Data analysis Detection Engineering DevOps Endpoint Management IAM Infrastructure as Code IT Security KQL Kubernetes OAuth2 OIDC Operations Problem-solving Programming Python Security SQL Terraform
Experience5-7 years
EducationBachelor's degree Business Equivalent experience
TimezonesAmerica/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9