Senior Cloud Security Engineer

Overview:

We are seeking a highly skilled, senior and motivated Cloud Engineer to join our dynamic team. As a Cloud Security Engineer, you will play a crucial role in the development of the Cloud security engineering and architectural direction for protecting the BTSE ecosystem. This position will directly contribute to the overall global enterprise cloud architecture and lead the security vision and strategy around cloud-based applications, across all types (including Infrastructure, Platform, and Software as a Service (IaaS/PaaS/SaaS).

You will collaborate closely with cross-functional teams, including infrastructure, developers personnel, and security professionals, to integrate security best practices seamlessly into our AWS infrastructure. Your primary focus will be on implementing security controls, monitoring, automating security processes, investigations, threat hunting and promoting a culture of security within our organization.

Key Responsibilities and Deliverables:

1. Lead the solutioning and design for cloud and cloud/hybrid based systems. Possess a firm understanding of the offerings within various cloud security platforms. Based on business requirements, design and implement cloud-native architectures and designs that will allow those requirements to be met with a minimal degree of risk to BTSE and with appropriate security controls present.
2. Lead initiatives designed to share knowledge across Security Platforms and/or Technology teams. Identifies, recommends, coordinates, and delivers timely knowledge to support teams regarding technologies, processes or tools. Develops and executes strategies to increase Cloud Security knowledge throughout the enterprise.
3. Security Automation: Develop and maintain automation scripts, tools, and frameworks to streamline security processes, such as code scanning, configuration management, and continuous security monitoring.
4. Security Testing and Compliance: Establish and maintain a robust testing framework, including penetration testing, vulnerability scanning, and security assessments, to identify and mitigate potential security risks.
5. Apply risk-based thinking enabling teams to make the right security decisions and priorities
6. Identify gaps in existing security architecture and design and recommend changes or enhancements
7. Incident Response and Monitoring: Participate in incident response activities, investigate security incidents, and contribute to improving incident response processes. Develop and maintain security monitoring systems to detect and respond to security threats proactively.
8. Continuous Improvement: Stay up-to-date with the latest security threats, vulnerabilities, and industry best practices. Continuously evaluate and enhance the security posture of our systems, infrastructure, and applications.
9. Collaboration and Training: Work closely with cross-functional teams, including developers, system administrators, and security professionals, to promote a culture of security awareness and knowledge sharing. Conduct training sessions to educate and empower team members on secure practices.

Your Profile:

• At least 10 years of experience in Engineering with at least 5 years of experience in Cloud Security Architecture
• 5 years experience with Cloud platforms such as Amazon Web Services (AWS), Azure, Google Cloud
• Experience with assessment, development, implementation, optimization, and documentation of a comprehensive and broad set of security technologies and processes such as data protection, cryptography, key management, identity and access management (IAM), network security) within SaaS, IaaS, PaaS, and other cloud environments.
• Working knowledge of common and industry standard cloud-native/cloud-friendly authentication mechanisms.
• Experience working with cloud security and governance tools, cloud access security brokers (CASBs), and server virtualization technologies.
• Experience with enterprise applications (architecture, development, support, and troubleshooting).
• Proficiency in scripting and automation languages a plus (e.g., Bash, PowerShell, Python).
• Strong analytical and problem-solving skills, with the ability to identify and address security vulnerabilities and risks.
• Excellent communication and collaboration skills, with the ability to work effectively in cross-functional teams.
• Experience with web3 and blockchain technologies are a plus.
• Relevant certifications (e.g., CISSP, CEH, AWS Certified Security Specialty) are a plus.
• Able to effectively listen, speak, read and write in English, with Chinese as a plus.

As a Senior Engineer, you will have the opportunity to make a significant impact on the security posture of our organization by bridging the gap between infrastructure, operations, and security teams. If you are passionate about security, possess a strong technical background, and thrive in a fast-paced environment, we would love to hear from you.