Senior Container Security Engineer

Grow your career with a growing organization

Whether they're helping people reach their long-term financial goals or providing personal wealth management strategies, every associate contributes to changing the lives of those we serve for the better. When it comes to job satisfaction, that's hard to beat. And from a personal satisfaction perspective, you'll enjoy the freedom to support causes that matter to you and experience a truly inclusive work environment. Your future starts now.

As a Senior Engineer for Container Security, you'll p rovide direction to the team for container security policies, standards, and procedures that adhere to industry best practices and gitops. You'll be responsible for ensuring that the corporate IT environment is secure and complies with all internal and external audit requirements. Additionally, you'll provide direction to the team for implementing security hardening standards for container infrastructure.

What you will do:

• Evangelize our container security platform and manage associated security components and micro segmentation controls
• Manage, monitor, audit, threat hunt, and educate security teams about container security controls and underlying containerization platforms
• Evaluate, design, and implement security related solutions, adhering to established change control processes
• Provide technical security planning, implementation, configuration, support and troubleshooting services on all security technologies
• Coordinate with systems and network engineers to ensure servers and network devices conform to security standards, and that security devices and controls are working as designed
• Assist in defining the security strategy and integrating regulatory compliance requirements (e.g., PCI, GLBA) into the organizational security roadmap
• Implement and maintain cryptographic controls (e.g. data at rest, data in transit) in line with security requirements
• Define and assist in the management of an Incident Response Team that addresses potential or in-progress security events, establishing and adhering to escalation procedures and response times
• Review and approve submitted application and systems change requests for security compliance
• Participate in 24x7 on-call rotation

What you will bring

• 3+ years of experience with container security, container workload protection, managing associated security controls, to include defining policies and administering container platform policies, RBAC, and micro segmentation controls.
• 6 + years of technical experience working with security solutions and conducting security operations
• 6+ years of network security experience and reviewing security tools and solutions and making recommendations on utilization and strategy
• 6 + years of experience with network protocols, data flows and attacks within an IP environment
• 5+ years of experience in building configurations for security devices and building an automated process to support large-scale deployment
• 3+ years of experience with commercial and open source security applications and technologies (e.g. malware prevention, DLP, IDS/IDP, cryptography, vulnerability scanning and penetration testing), as well as related protocols and tools (e.g. SSH, SSL/TLS, snort, port scanners, rootkit detectors, etc.)
• 2+ years of experience performing network and application security administration, penetration testing and/or threat assessments ISSP, GIAC certification(s)
• 2+ years programming/scripting experience - one or more of: C, C , Java, Perl, PHP, Python, shell

What will set you apart :

• A passion for container security
• Extensive knowledge and experience with security software, firewalls, intrusion detection systems and other security systems and network monitoring
• Extensive hands-on technical knowledge of network systems, protocols, and standards such as Ethernet, LAN, WAN and TCP/IP
• Experience as a security specialist in a regulated IT environment including some combination of SOX, HIPAA, GLBA, PCI and responsible for compliance and performing/coordinating audits (1+ years)
• Experience with technologies such as Wiz, Twistlock, Laceworks, SumoLogic, Prisma Cloud Compute, Kubernetes, Docker, LXC or similar
• Certificates (or their equivalents) such as AWS Associate Solution Architect, Kubernetes certification
• Demonstration or presentation of detailed implementation/cutover planning that illustrates your ability to safely implement technologies
• Github repository showing proficiency in a programming/scripting

Applicants must be authorized to work for any employer in the U.S. We are unable to sponsor or take over sponsorship of an employment visa at this time, including CPT/OPT.

What we offer you

We offer an array of diverse and inclusive benefits regardless of where you are in your career. We believe that providing our employees with the means to lead healthy balanced lives results in the best possible work performance.

• Medical, dental, vision and life insurance
• Retirement savings - 401(k) plan with generous company matching contributions (up to 6%), financial advisory services, potential company discretionary contribution, and a broad investment lineup
• Tuition reimbursement up to $5,250/year
• Business-casual environment that includes the option to wear jeans
• Generous paid time off upon hire - including a paid time off program plus ten paid company holidays and three floating holidays each calendar year
• Paid volunteer time - 16 hours per calendar year
• Leave of absence programs - including paid parental leave, paid short- and long-term disability, and Family and Medical Leave (FMLA)
• Business Resource Groups (BRGs) - internal networks that rally around common interest, experiences and identities such as race, ethnicity, gender, ability, military status and sexual orientation. BRGs play a vital role in educating and engaging our people and advancing our business priorities.

Base Salary Range

$120,600.00 - $174,825.00

The salary range above shows the typical minimum to maximum base salary range for this position in the location listed. Non-sales positions have the opportunity to participate in a bonus program. Sales positions are eligible for sales incentives, and in some instances a bonus plan, whereby total compensation may far exceed base salary depending on individual performance. Actual compensation offered may vary from posted hiring range based upon geographic location, work experience, education, licensure requirements and/or skill level and will be finalized at the time of offer.

Equal opportunity employer
• Drug-free workplace

We are an equal opportunity employer with a commitment to diversity. All individuals, regardless of personal characteristics, are encouraged to apply. All qualified applicants will receive consideration for employment without regard to age (40 and over), race, color, national origin, ancestry, sex, sexual orientation, gender, gender identity, gender expression, marital status, pregnancy, religion, physical or mental disability, military or veteran status, genetic information, or any other status protected by applicable state or local law.

For remote and hybrid positions you will be required to provide reliable high-speed internet with a wired connection as well as a place in your home to work with limited disruption. You must have reliable connectivity from an internet service provider that is fiber, cable or DSL internet. Other necessary computer equipment, will be provided. You may be required to work in the office if you do not have an adequate home work environment and the required internet connection.

Job Posting End Date at 12:01 am on:

05-20-2024

Want the latest money news and views shaping how we live, work and play? Sign up for Empower's free newsletter and check out The Currency .

Workplace Flexibility: Remote - Nationwide