TripActions is looking for a Staff Cloud Security Engineer with solid experience in AWS to help us automate and maintain high cloud security posture, be a reliable partner for Engineering, SRE and IT teams helping improve security of implemented workflows and solutions, and contribute to company security.

What You’ll Do:

• Design and implement secure cloud architectures - components, systems, networking, accounts, integrations, recommend improvements to the existing infrastructure
• Analyze current cloud configuration, identify potential risks and help design solutions to mitigate them
• Work cross functionally with SRE team on infrastructure changes and improvements
• Analyze and manage cloud firewalls configuration in efforts to raise security posture of cloud components
• Collaborate with engineering teams to improve the security of Tripactions platform
• Maintain Cloud Security Posture Management (CSPM) software in multi-account AWS environment
• Automate CSPM tool remediations
• Work with SIEM solution in efforts to onboard all critical logs as well as configure alerts

What We’re Looking For:

• 8+ years of experience
• Strong familiarity with Linux and Windows operating systems and cloud provider ecosystems. Amazon AWS is required
• Practical knowledge of AWS foundation services related to compute, network, storage, content delivery, administration and security, deployment and management, automation technologies
• Experience with TCP/IP, DNS, routing, firewalls, load balancing
• DevOps know-how: building and deploying infrastructure with cloud deployment, build and test automation technologies like Ansible, Salt, Chef, Puppet, Docker, Jenkins
• Experience in micro services architecture (AWS Lambda, Docker, AWS ECS, AWS EKS)

Nice to Have:

• Minimum of Bachelor’s degree in Computer Science or Electrical Engineering
• Practical knowledge GCP or Azure is a plus
• Experience with SIEM and data analysis tools
• Extensive experience architecting, designing, and programming applications and experience in high level programming languages. Java or Python preferred
• Capability architecting highly available systems that utilize load balancing, and horizontal scalability
• Certification: CISSP or equivalent security-related industry certifications and AWS Associate or higher Certification is a plus