Cloudera
At Cloudera, we believe that data can make what is impossible today, possible tomorrow.
Staff Security Engineer
Security EngineerSecurity EngineerFull TimeRemoteTeam 1,001-5,000Since 2008H1B SponsorCompany SiteLinkedIn
Location
Illinois + 2 moreAll locations: Illinois, Texas, Utah
Posted
28 days ago
Salary
Not specified
3 yrs expEnglishAnsibleAWSAzureCloudGoogle Cloud PlatformJavaJava ScriptJenkinsKubernetesMicroservicesPythonSplunkTerraformType ScriptVaultGo
Job Description
• Develop, deploy, and support self-service security tools and services that constitute the internal security platform.
• Contribute knowledge and support for security projects, including support of tool integration and implementation of new security capabilities within the platform.
• Support & improve security integrations into CI/CD pipelines (SAST, DAST, SCA, IAST, etc.) and developer workflows.
• Maintain deployment of secure multi-cloud environments (AWS, Azure, GCP) using Infrastructure as Code (e.g., Terraform, Ansible).
• Assist with security architecture reviews of new products and features, contribute to threat models, and support adoption of security-as-code best practices.
• Work with the Site Reliability Engineering (SRE) team to maintain & respond to automated monitoring and security integrations for production systems.
• Collaborate with internal security teams to support compliance, incident response, and operational security requirements.
• Enable and support the adoption of security engineering best practices and standards across the organization.
• Evangelize the use of security platform tooling and deliver high-impact DevSecOps training and outreach to internal development & engineering teams.
• Participate members of the Security team and security advocates in advanced DevSecOps principles, platform engineering, and secure coding practices.
Job Requirements
- Experience developing, deploying, or supporting security tools and services (e.g., security scanners, secrets management, policy engines) used by other engineering & security teams.
- Knowledge of DevSecOps principles and practical experience implementing security controls in CI/CD pipelines (e.g., Jenkins, GitLab CI, GitHub Actions).
- Experience with large-scale cloud security engineering in AWS, Azure, and Google Cloud, including automated network provisioning and secure configuration management.
- Experience with code review of one or more programming languages (Java, Python, Go, JS/TS).
- Knowledge or experience in Kubernetes operations, security, and using tools like Helm for deployment and policy enforcement.
- Experience using and supporting Infrastructure as Code (IaC) & configuration management tools like Terraform, Cloudformation, or Ansible.
- Experience with operating or supporting security tools and platforms, including HashiCorp Vault for secrets management, Splunk for security monitoring and analytics, and CrowdStrike or similar EDR solutions for endpoint security.
- Working knowledge of web service frameworks, distributed architectures (event-driven, microservices, serverless), and their corresponding security challenges.
- Experience performing security reviews, developing and reviewing threat models, and conducting risk assessments against complex systems.
- Security certifications (CISSP, SSCP, Security+, etc.) are a bonus but not required.
- Familiarity with Cloudera’s products or other distributed computing systems is a strong bonus, or a willingness to dig into our products to truly understand how they work.
Benefits
- Generous PTO Policy
- Support work life balance with Unplugged Days
- Flexible WFH Policy
- Mental & Physical Wellness programs
- Phone and Internet Reimbursement program
- Access to Continued Career Development
- Comprehensive Benefits and Competitive Packages
- Paid Volunteer Time
- Employee Resource Groups
