Cloud Security Engineer

Technologies we use

About the project

Your responsibilities

• As a Cloud Security Engineer, you will be responsible for building and maintaining secure foundations of a scalable infrastructure that empowers engineers to innovate quickly and safely.
• Contribute to building the detection pipeline using the existing CSPM (cloud security posture management), ASM (Attack surface management), DLP, SIEM and SOAR tools; tuning out false positives and automating playbooks.
• Maintain all installations of security related applications on the cloud, cloud security operations playbooks, incident response plans, processes, procedures, and equipment. Drive proactive monitoring and reporting for security controls and identify opportunities to implement security automation.
• Contribute to building out the infrastructure as code pipeline as well as develop custom and open-source security solutions.
• Scale proactive security controls to new environments (e.g., acquisitions).
• Work on the remediation of vulnerabilities.
• Build Terraform modules with built-in security guardrails, such as logging, encryption, and automated threat detection enablement
• Deploy cloud-native detection capabilities using AWS Guard Duty, Security Hub, and custom detection rules to identify credential compromise, crypto-mining, and lateral movement
• Conduct security audits of cloud resource configurations, and remediate deviations from CIS Benchmarks and our internal security policies
• Apply zero trust principles through strict network segmentation, authentication, and authorization across our cloud environments
• Participate in the security on-call rotation and respond to security alerts and incidents to ensure rapid mitigation and root cause analysis.
• Contribute to defining, building and improving on processes to secure AI systems again adversarial threats.

Our requirements

• Minimum 3 years' experience and a Bachelor’s degree in Computer Science or related fields such as Statistics, Data Science, Technology, Engineering and Mathematics.
• Ability to work on your own with self-motivation and be able to motivate your team members. Ability to ensure tasks are completed as specified without micromanaging
• A solution-oriented approach to problem-solving with an eye for detail and efficiency.
• Deep understanding and hands-on experience in cloud security on AWS.
• Understanding of network security, endpoint security, vulnerability management and cloud native security tools
• Automation proficiency in python or similar.
• Proficiency in terraform or similar.
• Understanding of threat landscape, MITRE ATT&CK framework and being able to translate those to actionable detections, tuning out false positives.
• Some experience with ML and AI security.

What we offer

• Friendly working atmosphere
• Working with the latest technologies on the market
• Monthly integration budget
• Flexible working hours
• Wide range of trainings
• PC workstation/Laptop + 2 external monitors
• OS: Linux, Windows
• Private medical care (possibility to add family members)
• Multisport card
• Life insurance
• Lunch card
• A partial reimbursement of the cost of an English language course
• Possibility to learn Korean for free
• Variety of discounts (Samsung products, theaters, restaurants)
• Unlimited free access to Copernicus Science Center for you and your friends
• Possibility to test new Samsung products
• Office in Warsaw Spire near metro station
• Attractive relocation package
• Hybrid model of work – 3 days from the office per week

Benefits