Monday, June 12, 2017

Principal Security Engineer

Principal Security Engineer
   
Description:                
Exciting opportunity for an top notch senior infrastructure security software engineer to join one of the world's leading customer experience management software companies. In this role, you will be responsible for identifying security risks to global IT infrastructure, designing scalable security software solutions, driving implementation and demonstrating effective risk mitigation to leadership. The role will be the technical subject matter expert on network security, system security, security monitoring and other infrastructure security related areas. You will also design & implement security controls within Docker container / Apache stack environment. Requires solid understanding of containerization & network segmentation within a software defined network. Also requires strong Python programming skills and good understanding of Docker.

Responsibilities include but are not limited to:
* Own the security of the technology stack supporting SaaS applications, including VMs, Docker containers, OS configuration, and networking
* Create secure configuration templates and network architecture standards, for SaaS offering as well as corporate IT infrastructure
* Perform threat modeling to identify weaknesses, and provide remediation guidance
* Design and build security into next generation software-defined network, for both on-prem and cloud environments
* Periodically and proactively assess system and network alignment with established baselines and standards

              

Requirements:            
Background / Experience requirements:
- Minimum of 8 years of experience in technical infrastructure security related function
- Deep knowledge of the security aspects of microservices and associated technologies, including Docker configuration, and distributed file systems (e.g., Ceph, NFS)
- Deep knowledge of authentication protocols, applied cryptography, PKI, and TLS
- Deep knowledge and experience in Unix, Linux and OS X
- Working knowledge of directory and distributed authentication/authorization technologies
(OpenLDAP, Active Directory, RADIUS, SAML, OAuth)
- Strong scripting skills (Perl/Python/Shell) and ability to write code for automation
- Experience in a technical security role with hands on experience in design and
implementation of network security, operating system security, vulnerability assessment
- Experience with customizing open source tools for enterprise deployment
- Experience with audits and certifications to regulations and standards like PCI DSS, SOC2, ISO 27001:27002
                                   
Location:  Palo Alto, CA


Ram Kumar | Talent Consultant | The Armada Group - On Demand Talent Solutions 

Direct: 831.264.0987