Lead Systems Engineer- Cloud Container Security (REMOTE)

Apply for this position Please mention DailyRemote when applying
Posted 11 days ago United States Salary undisclosed
Before you apply - make sure the job is legit.

Attempting to apply for jobs might take you off this site to a different website not owned by us. Any consequence as a result for attempting to apply for jobs is strictly at your own risk and we assume no liability.

Job Description

POSITION PURPOSE

The Home Depot is able to offer virtual employment of this position in the following states: AL, AK, AS, AZ, AR, DE, DC, FL, GA, HI, ID, IL, IN, IA, KS, KY, LA, ME, MH, MD, MA, MI, MN, MS, MO, MT, NE, NH, NJ, NM, NY, NC, ND, MP, OH, OK, OR, PA, RI, SC, SD, TN, TX, UT, VT, VA, WA, WV, WI, WY.

Container Security Engineers work as part of the Threat Exposure Management service. This operational function aligns with Application Security and Vulnerability Management to provide full-stack assessment and security posture of containerized solutions. Container Security Engineers will work closely with Software Engineers and Architects as well as other teams within Cybersecurity to identify vulnerabilities and recommend remediation or risk mitigation strategies.

The Staff Systems Engineer develops, maintains, and supports The Home Depot's technical infrastructure that includes network, hardware, database, and system software components.
The Staff Systems Engineer is responsible for collaborating with and enabling product teams with infrastructure. Staff Systems Engineers are expected to leverage tooling and custom applications to monitor and optimize performance. Staff Systems Engineers lead the stand up of physical and virtual infrastructure to meet evolving enterprise and product team needs. In addition, Staff Systems Engineers may lead the selection and rollout of field and corporate technology.

As a Staff Systems Engineer, you will be a core player that participates and leads multiple efforts simultaneously. You are expected to build and grow the skillsets of more junior Engineers on the team.
MAJOR TASKS, RESPONSIBILITIES AND KEY ACCOUNTABILITIES
20% - Strategy & Planning:
Researches and analyzes business trends and behavioral data to identify opportunities for improvements and new initiatives
Leads the evaluation, development, and recommendation of specific technology products and platforms to provide cost-effective solutions that meet business and technology requirements
Researches and designs best fit infrastructure, network, database, and security architectures for products
Proactively creates and maintains tools for monitoring and support
Participates in project planning and management across multiple efforts
Develops formal training courses
30% - Delivery & Execution:
Leads configuration, debugging, and support for infrastructure
Leads field and corporate roll-outs of technology
Leads the stand up of necessary system software, hardware, and equipment (physical or virtual) to meet changing infrastructure needs
Creates and optimizes specifications for technology solutions
Produces and manages purchase requests for hardware and software
40% - Support & Enablement:
Collaborates with product and project teams to understand needs and enable them with infrastructure
Supports technology architecture design review efforts for project and product teams
Leverages tooling and custom applications to monitor the operational status of applications, infrastructure, networks, databases, and security; optimizes and tunes performance as appropriate
Drives root cause analysis, debugging, support, and post-mortem analysis for security incidents and service interruptions
Maintains, upgrades, and supports existing systems and infrastructure to ensure operational stability
Acts as a vendor liaison, owning resourcing, issue management, and documentation
Leads the production of in-house documentation around solutions
Monitors tools and proactively helps teams struggling with systems issues
Provides application support for software running in production
Creates scripts and tools that drive automation and enable product teams and end users to move towards self service
Acts as a mentor to more junior Systems Engineers

10% - Learning:
Keeps abreast of innovations and industry trends as well as changes to internal systems and determines how they impacts tools, training, and support necessary to keep systems up, running, and secure
Participates in and contributes to learning activities around modern systems engineering core practices (communities of practice)
Proactively views articles, tutorials, and videos to learn about new technologies and best practices being used within other technology organizations
NATURE AND SCOPE
Typically reports to the Systems Engineer Manager or Sr. Manager.
ENVIRONMENTAL JOB REQUIREMENTS
Environment:
Located in a comfortable indoor area. Any unpleasant conditions would be infrequent and not objectionable.
Travel:
Typically requires overnight travel less than 10% of the time.
Additional Environmental Job Requirements:
MINIMUM QUALIFICATIONS
Must be eighteen years of age or older.
Must be legally permitted to work in the United States.
Additional Minimum Qualifications:
Must be legally permitted to work in the United States
Education Required:
The knowledge, skills and abilities typically acquired through the completion of a bachelor's degree program or equivalent in a field of study related to the job.
Years of Relevant Work Experience: 3 years
Physical Requirements:
Most of the time is spent sitting in a comfortable position and there is frequent opportunity to move about. On rare occasions there may be a need to move or lift light articles.

Additional Qualifications:

  • Intermediate to Advanced knowledge:
    • Basic understanding of Cybersecurity Governance patterns: Policy -> Standards -> Control Solutions
    • CIA Triad
    • Exhibited knowledge of containers, serverless, microservices architecture s, including technologies such as Docker , container orchestration platforms ( Kubernetes , etc.), and Cloud Service Provider serverless / cloud functions offerings
    • Secure SDLC Fundamentals
      • Basic Vulnerability Management and Application assessment - basic CVE and CWE analysis
      • Provide analysis and consultation for developers to aid them in identification and remediation of vulnerabilities in their pipelines
    • Container Security Scanners Experience : Palo Alto Prisma Cloud Compute (formerly Twistlock), AquaSec, Sysdig (Falco), Wiz, Anchore Cloud, BlackDuck OpsSight, Clair, JFrog Xray, and/or Qualys Container Security
  • Preferred
    • Vulnerability Management and Application Security Scanner Experience: Qualys, Nessus, Rapid7, WebInspect, AppScan, OWASP ZAP, and/or BURP
    • System Virtualization and Serverless Computing fundamentals - system abstraction, application workload isolation
      • Cloud-hosted application/container fundamentals - public and/or private cloud (AWS, Azure, Google Cloud, Cloud Foundry)
    • Infrastructure as Code - demonstrated understanding of infrastructure as code (IAC) tools and approaches for the automated management of computing infrastructure and services.
      • Terraform and the like… (Ansible, Chef, etc.)
    • DevOps fundamentals - rapid application development and deployment lifecycle enabled by containerization. Secure software development lifecycle SSDLC Understands processes surrounding developer and DevOps experience from code compilation to system image build (containers, system images), continuous integration and continuous deployment and the tests / validations that take place within that process.
    • Operating System fundamentals - preferably in the Linux space, but deep Windows skills are workable
    • Internetworking fundamentals - OSI model, troubleshooting at each layer, basic network capture analysis, network and application load balancing (L4, L7), client-server operating model.
    • Cloud certifications
Preferred Qualifications:
3-6 years of relevant work experience
Professional experience in two of the following areas: Infrastructure Engineering, Network Engineering, Database Engineering, or Security Engineering; familiarity with at least one other, and interest in the growing in the remaining disciplines
Proficiency in working as part of a collaborative, cross-functional, modern engineering team Proficiency in infrastructure, network, database, or security troubleshooting and remediation; experience with at least one other
Proficiency in installing and upgrading applications or databases and performing system maintenance
Experience with networking, system and hardware design and architecture, DBMS concepts, SQL programming, and client server concepts
Proficiency with debuggers, runtime analysis, library systems, compiled programming, and software update tools
Proficiency in system and environment analysis, design, and optimization
Experience with object oriented programming languages (preferably Java), distributed computing environments, and code reviews
Experience with system security design and management
Experience with disaster recovery planning and engineering
Proficiency in monitoring the operational status and performance of, and configuring as well as tuning, systems, networks, or databases
Proficiency in operating system commands and utilities as well as scripting
Proficiency working with cloud platforms such as GCP and Azure
Proficiency in supporting a 24x7 retail operation
Knowledge, Skills, Abilities and Competencies:Cultivates Innovation: Creating new and better ways for the organization to be successful
Action Oriented: Taking on new opportunities and tough challenges with a sense of urgency, high energy, and enthusiasm..... click apply for full job details