AWS Security Engineer (REMOTE)

Apply for this position Please mention DailyRemote when applying
timePosted 2 days ago location United States salarySalary undisclosed
Before you apply - make sure the job is legit.

Attempting to apply for jobs might take you off this site to a different website not owned by us. Any consequence as a result for attempting to apply for jobs is strictly at your own risk and we assume no liability.

Job Description

Our client is investing in bright, agile and diverse new talent to ensure we continue to innovate and strengthen relationships with our policyholders. That's why we're actively seeking an Information Security Engineer to join our team and take part in our people-first culture. As a Information Security Engineer, you will play a key role in Pacific Life's growth and long-term success by supporting the RSD Division Information Security Team, with a focus on Cloud Security, DevOps, CICD, Vulnerabilities Management, Application Security. While reporting to the RSD Information Security Practice Team Manager, you will be responsible for the security of on-premise and cloud based Applications, Infrastructure, Data and other IT assets. Responsibilities Work with divisional Applications Teams and various enterprise IT teams to ensure projects and initiatives meet or exceed company information security standards. Partner with Enterprise Information Security team to support information security requirements and best practices at division level. Support Enterprise Vulnerability Management Program including vulnerability scans, remediation and monthly KRIs. Partner with Enterprise Security and AppDev teams to help conduct static and dynamic code checks, penetration tests, security assessments, application security testing, and configuration management of applications and IT assets. Respond in timely manner to security alerts, development of service processes and procedures, and administrationoperation of security tooling. Factors for Success 5-8 years of experience in Information Security. Strong technical skills experience Linux and Windows operating systems. Scripting experience in Python and Powershell. Hands-on Experience with TerraformCloudFormation. Experience with DevOps and CICD pipelines security. SASTDAST static and dynamic code check. Securing VPCs, VPC Peering, VPC Endpoints, TGW, Private Link, Direct Connect and other native AWS services. Experience with Containers, Containers Security, Serverless ComputingMicroservicesAPIs security is a plus. Knowledge of CIS, NIST frameworks and OWASP Top 10. Experience with Cloud Compliance, SEIM, API Gateway, Code Repository, Azure Cloud Platform is nice to have. Good understanding of AnsibleChef configuration management. Experience with Cloud Compliance, SEIM, API Gateway, Code Repository, Azure Cloud Platform is a plus. AWS Security, AWS DevOps certification Demonstratable experience writing clear and legible process documentation and Strong communication skills. TECHNICAL SKILLS (Must Have) AWS Cloud Security Azure DevOps CICD Dynamic code testing Linux Linux security Python Scripting Static Application Security Testing TerraFormCloudFormation Nice To Have Ansible containers security Serverless ComputingMicroservicesAPIs security We are an equal opportunity employer and make hiring decisions based on merit. Recruitment, hiring, training, and job assignments are made without regard to race, color, national origin, age, ancestry, religion, sex, sexual orientation, gender identity, gender expression, marital status, disability, or any other protected classification. We consider all qualified applicants, including those with criminal histories, in a manner consistent with state and local laws, including the City of Los Angeles' Fair Chance Initiative for Hiring Ordinance. Requirements Our client is investing in bright, agile and diverse new talent to ensure we continue to innovate and strengthen relationships with our policyholders. Thats why were actively seeking an Information Security Engineer to join our team and take part in our people-first culture. As a Information Security Engineer, you will play a key role in Pacific Lifes growth and long-term success by supporting the RSD Division Information Security Team, with a focus on Cloud Security, DevOps, CICD, Vulnerabilities Management, Application Security. While reporting to the RSD Information Security Practice Team Manager, you will be responsible for the security of on-premise and cloud based Applications, Infrastructure, Data and other IT assets. Responsibilities Work with divisional Applications Teams and various enterprise IT teams to ensure projects and initiatives meet or exceed company information security standards. Partner with Enterprise Information Security team to support information security requirements and best practices at division level. Support Enterprise Vulnerability Management Program including vulnerability scans, remediation and monthly KRIs. Partner with Enterprise Security and AppDev teams to help conduct static and dynamic code checks, penetration tests, security assessments, application security testing, and configuration management of applications and IT assets. Respond in timely manner to security alerts, development of service processes and procedures, and administrationoperation of security tooling. Factors for Success 5-8 years of experience in Information Security. Strong technical skills experience Linux and Windows operating systems. Scripting experience in Python and Powershell. Hands-on Experience with TerraformCloudFormation. Experience with DevOps and CICD pipelines security. SAST DAST static and dynamic code check. Securing VPCs, VPC Peering, VPC Endpoints, TGW, Private Link, Direct Connect and other native AWS services. Experience with Containers, Containers Security, Serverless ComputingMicroservicesAPIs security is a plus. Knowledge of CIS, NIST frameworks and OWASP Top 10. Experience with Cloud Compliance, SEIM, API Gateway, Code Repository, Azure Cloud Platform is nice to have. Good understanding of AnsibleChef configuration management. Experience with Cloud Compliance, SEIM, API Gateway, Code Repository, Azure Cloud Platform is a plus. AWS Security, AWS DevOps certification Demonstratable experience writing clear and legible process documentation and Strong communication skills. TECHNICAL SKILLS (Must Have) AWS cloud security Azure DevOps CICD dynamic code testing Linux linux security python scripting Static Application Security Testing TerraFormCloudFormation Nice To Have Ansible containers security Serverless ComputingMicroservicesAPIs security