Security Engineer - Infrastructure
Wasabi Technologies
Other Engineering
United States · Remote
Posted 6+ months ago
At Wasabi, we’re a proven collection of pioneers, visionaries and disruptive doers. We see things differently than our competitors, and we make our mark in the industry by challenging the norm and delivering the unexpected and improbable. We’re a fast-growing company taking the Cloud Storage industry by storm and recognized as one of the best places to work in Boston.
Wasabi hot cloud storage is a new class and category of cloud storage, breaking all traditional barriers and boundaries of storage with a disruptive value proposition of being 1/5th the cost of AWS S3, faster than the competition, with no fees for egress or API request and delivered as a single-tier solution. Cloud storage has never been so simple, so fast and so inexpensive. It’s all part of our vision to make cloud storage the next great global utility, just like electricity.
Role Description: Security Engineer - Infrastructure
Role Purpose:
As a Security Engineer at Wasabi Technologies, you'll play a crucial role in safeguarding our cloud storage platform, enhancing our security practices from development through production across our global data centers. Your responsibilities will include evaluating, deploying, configuring, and maintaining components of our security infrastructure. You'll collaborate closely with our development and operations teams to ensure the security of our systems and deployment pipelines.
At Wasabi, you'll contribute to building and maintaining our entire infrastructure, from rack space and power to networking, Kubernetes clusters, and workloads. Your expertise in cloud security with AWS, Azure, or Google Cloud is highly valuable and will be essential in tackling new challenges ahead.
*Principals Only. No Recruiters.
Responsibilities:
- Managing and maintaining identity management solutions, which includes tasks such as group creation, batch user management, internal audits and other administrative level tasks within an Enterprise class IAM system.
- Develop, implement, identify, integrate, and maintain security controls automation and security operations. Additionally, you’ll collaborate with business and technology partners to define the least privileged roles in applications and systems.
- Overseeing, maintaining, and enhancing vulnerability management systems using a mix of internal tools and third-party resources.
- Work closely with the security team to assess, prioritize, and address vulnerabilities in various internal ecosystems, i.e., networking, Docker images, Kubernetes, Linux, etc. It is a collaborative effort with other security professionals and DevOps engineers to develop and implement effective security strategies.
- Sustaining and elevating our SIEM platform for improved efficacy and efficiency.
- Staying abreast of emerging security threats and trends to ensure up-to-date knowledge.
Requirements:
- 3+ years of experience with security technologies and products such as firewalls, intrusion detection/prevention systems, endpoint protection, vulnerability scanners, Kubernetes security, and infrastructure security. Practical experience in Linux fundamentals, system administration and package management.
- 3+ Regulatory background preferred (FedRAMP, DoD, HIPAA).
- 3+ years of hands-on experience managing and integrating with an identity provider (we use Okta) and HashiCorp Vault.
- Should be familiar with cornerstone Security principles such as Least Privilege.
- 3+ years of implementing IAM systems, automating user privilege attestation and designing custom groups/roles to adhere to regulatory requirements
- 3+ years experience with cloud platforms such as AWS, GCP, or Azure.
- Relevant security certifications (CISSP, CKS, GIAC) are not required but would be strong positives.
- Nice to have: A functional knowledge Kubernetes, Terraform and Ansible.
Wasabi Technologies is an Equal Opportunity Employer. We prohibit discrimination and harassment of any kind based on race, color, sex, religion, sexual orientation, national origin, disability, genetic information, pregnancy, or any other protected characteristic as outlined by federal, state, or local laws.