Security DevOps Engineer

Nubeva - San Jose, CA (30+ days ago)


Nubeva is seeking a Security DevOps engineer to play a critical role in our customer support & field sales team. This position will report to the Director of Customer Engineering. This individual will work with our engineering team and product management to develop and integrate security solutions for the Nubeva Stratusedge products focusing on cloud security and visibility. The position will be responsible for field-facing security solution development with the field, demos, competitive analysis, and building higher-level solutions that articulate the unique benefits of Nubeva’s cloud solutions. You will be expected to be comfortable creating automated solutions with CloudFormation, Ansible, Jenkins and other DevOps tools.

Job Responsibilities:
Gain deep application-level knowledge of the StratusEdge solution as well as contributing to their overall design.
Be a DevOps champion - work closely with other internal teams to build security, reliability, and scalability into the development lifecycle.
Dive deep into the software stack to troubleshoot as needed. Provide production support coverage as needed.
Troubleshoot and resolve issues related to application development, deployment and operations.
Build from the ground up reliable infrastructure services in AWS, Azure and potentially other cloud providers to deliver highly available and scalable services.
Work with a team of peers who are smart, professional, pull their own weight, and share a passion for what they’re creating.
Test and document product configurations and best practices
Other duties as assigned

Basic Qualifications:
5+ years of information technology experience
3+ years of Information Security experience
Bachelor’s degree in information security/systems, computer science or related experience
CISSP / CCSP certification a definite plus

Desired Skills and Experience:
Two or more years of experience with AWS/Azure/Public Cloud
Two or more years of DevOps experience or infrastructure experience.
Two or more years of experience in Security, Compliance and risk management, including privacy, controls, etc.
Programming and Ops Skills such as Python, Go, Ansible, etc.
Deep knowledge of Linux and the networking stack, with hands-on experience in large infrastructure security in data centers and public cloud
Experience with security at the host level including iptables and rule automation, as well as network-level east-west and north-south security best practices.
Experience in creating automated frameworks for vulnerability management such as automated OS/kernel patching including kernel patching, Java upgrades, Python upgrades, and Docker security at large scale
Proven track record designing, documenting and successfully deploying security solutions on private and public clouds (AWS, Azure, Google Cloud), including IAM, FIM, Vulnerability Management, AntiVirus, IDS/IPS, SIEM, MFA & PAM solutions.
Technical and comprehensive knowledge of next generation firewall configuration and policy management to include experience with IDS/IPS, DLP, SSLVPN and NAC.
Administrative and operational knowledge of SIEM, to include experience with managing log sources, customizing queries, parsing and collating data.
Experience with Amazon Web Services (AWS) and Microsoft Azure security models
Quick learner: Ability to quickly come up to speed in new technology areas
Deep knowledge on cloud platforms, specifically AWS and Azure
Scripting tools including with Python, Puppet/Chef, & Ansible
Strong written/verbal communication skills