Senior Cloud Security Engineer

Job Title

Senior Cloud Security Engineer

Job Description

About Your Role: 
Dotdash Meredith is looking for a Senior Cloud Security Engineer with a demonstrated track record of innovative thinking, technical expertise, and execution. You’ll be responsible for maintaining (and raising) the security posture across our production multi-cloud environment, designing and implementing cloud security solutions, and reducing toil through automation. 
As a highly visible professional within the Information Security team, you will be responsible for helping to set technical direction for cloud security, managing technical projects, and partner with other groups within the organization to deliver tools and services that align with our security roadmaps. 

Remote or Hybrid 3x a month:

In-office Expectations: This position offers remote work flexibility; however, if you reside within a commutable distance to one of our main offices in New York, Des Moines, Birmingham, Los Angeles, Chicago, or Seattle, the expectation is to work from the office three times per month.

What You’ll Do: 

Cloud Security Engineering 
● Provide technical leadership and oversight to cloud security activities and initiatives ● Remain current on the evolving landscape of public cloud environments 
○ Understanding various cloud environments 
● Perform cloud security design 
○ Determine security requirements and security controls 
○ Define security roadmaps and/or strategy 
○ Create/enhance security procedures and policies 
○ Create/enhance security awareness and training 
● Design, implement and maintain cloud security solutions including Zero Trust, Vulnerability Assessment and Remediation, Identity Access Management (IAM), and Data Protection controls ● Evaluate and implement new security products and solutions 
● Design and/or implement cloud deployment security automation and templates (IasC tools) ○ Maintain a knowledge base of various IasC products 
● Perform vulnerability analysis and threat assessments 
● Implement security orchestration and automation response (SOAR) including authoring code and/or writing scripts 
● Provide assistance to the incident response process 

Architecture And Design 
● Provide technical leadership and oversight to security architecture activities and initiatives ● Define security architecture roadmaps and/or strategy 
● Determine security requirements and security controls 
● Provide design and oversight into cloud security architectures including DevSecOps environments and Container security 
● Remain current on the evolving landscape of public cloud environments and understand various cloud environments 
● Provide design and oversight into identity and access management (IAM) 
● Perform threat modeling and reporting 

Compliance & Risk 
● Oversee adherence to internal policies or standards 
○ Vendor or new technology evaluations 
○ System hardening and audit recordings 
● Oversee adherence to compliance and regulatory standards and understand various compliance standards
● Interpret standards, requirements and their application to the enterprise environment ● Create or improve compliance roadmaps or strategies 
● Provide leadership, guidance and subject matter expertise to compliance and audit teams ● Recommend, document and monitor the implementation of any prescribed corrective actions resulting from risk assessments 

About You: 
● 5+ years of experience in Security with 3+ years of experience as a Security Engineer with a focus on securing cloud workloads and associated infrastructure. 
● Experience deploying and customizing security tools. 
● Fluent in one or more modern coding languages (Python, Go, JavaScript, etc.). ● Experience with one or more infrastructure as code tools (Terraform, Ansible, etc.). ● Experience with one of the major cloud providers (AWS, Azure, GCP) and Kubernetes. 

Preferred Skills:
● Passion for cloud security and continuous learning. 
● Able to concisely communicate security risks to both technical and business audiences. ● Attention to detail. 
● Ability to work independently, and as part of a team. 
● Ability to multitask and prioritize work effectively.

It is the policy of Dotdash Meredith to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, the Company will provide reasonable accommodations for qualified individuals with disabilities. Accommodation requests can be made by emailing ddm.hr@dotdashmdp.com.

The Company participates in the federal E-Verify program to confirm the identity and employment authorization of all newly hired employees. For further information about the E-Verify program, please click here: https://www.e-verify.gov/employees

Pay Range

Salary: New York: $160,000.00 - $190,000.00 Remote US: $135,000.00 - $160,000.00 Washington: $155,000.00 - $185,000.00

The pay range above represents the anticipated low and high end of the pay range for this position and may change in the future. Actual pay may vary and may be above or below the range based on various factors including but not limited to work location, experience, and performance. The range listed is just one component of Dotdash Meredith’s total compensation package for employees. Other compensation may include annual bonuses, and short- and long-term incentives. In addition, Dotdash Meredith provides to employees (and their eligible family members) a variety of benefits, including medical, dental, vision, prescription drug coverage, unlimited paid time off (PTO), adoption or surrogate assistance, donation matching, tuition reimbursement, basic life insurance, basic accidental death & dismemberment, supplemental life insurance, supplemental accident insurance, commuter benefits, short term and long term disability, health savings and flexible spending accounts, family care benefits, a generous 401K savings plan with a company match program, 10-12 paid holidays annually, and generous paid parental leave (birthing and non-birthing parents), all of which may vary depending on the specific nature of your employment with Dotdash Meredith and your work location. We also offer voluntary benefits such as pet insurance, accident, critical and hospital indemnity health insurance coverage, life and disability insurance.

#NMG#