Cloud Security Engineer
This is a remote position. We are a global team that leverages the latest technology to communicate with our colleagues across the globe. When it’s safe to do so, there may be times in which this role would be required to travel to a local office for in-person collaborations with your team.
Being a Cloud Security Engineer at iManage means…
You will primarily be responsible for the design, implementation, and routine monitoring of all security in a hybrid private/public cloud operation as well as with the integrations between that environment and other security systems including enterprise SIEM, EDR, and vulnerability management. As a key member of the team, you will develop process and procedure for tier-1 SOC personnel to be able to respond to initial security alerts while also acting as the main contact for event escalations. Additionally, you will assist in identifying, analyzing, and influencing company management of security risks across the organization, based on observed events, logs, and collected threat intelligence. This position has a strong focus on automation of processes and controls.
Here is what one of our leaders, Manager of Cloud Security Engineers (Joe Hartmann), has to say about the investment we make: ”Security has always been a focus for iManage but we are making significant investments in the coming years so our team is growing at a global level. Also, we invest significant amount of time and money in our team members development including coaching, mentorship, informal or formal trainings, reading materials, and anything else that will allow the engineer to grow at a professional and personal level.”
iM Responsible For…
- Using adversarial threat-based tactics, techniques, and procedures to identify potential new SIEM data sources, build detection logic, and formulate responses
- Continuously monitoring threat and vulnerability sources and analyzing the data for potential risks to the overall safe operations of the organization
- Acting as part of the incident response team providing troubleshooting, analysis and forensics when needed
- Designing and implementing automated security processes and controls to increase operational effectiveness and to reduce manual processes
- Driving integrations with infrastructure and automation orchestration platforms through proven architectural patterns (e.g. APIs)
- Managing version control with security best practices in mind such as scanning repos for secrets and storing secrets in vaults
- Contributing to increasing the maturity of automation and systems development life cycle
- Creating and reviewing scripted inputs for SIEM data ingestion
- Interfacing with infrastructure and other teams throughout the organization with the objective to provide high quality and low friction, security operations services
- Inspecting issues as they arise in automation, version control, and overall security and suggesting necessary steps to solve those quickly
- Participating with product & service Agile/Scrum teams
- Preparing and documenting standard operating procedures
iM Qualified Because I Have…
- 3-5+ years of experience in cloud security or related area
- Proven experience designing and building security controls for hybrid private/public cloud environments
- Good understanding of, and experience with, DevOps, SRE and SDLC methods, tooling, processes, procedures and the security needs around them
- Inspected issues in automation, version control, and overall security and suggested necessary steps to solve those quickly
- Understanding of, or experience with managing and securing containers using Docker, Kubernetes and Mesos as well as third-party container security products such as Sysdig or Twistlock
- Hands on automation experience using Ansible, Puppet, Chef and/or Salt
- An understanding of logging solutions such as Elastic Logstash, Apache Kafka & syslog
- Splunk Enterprise experience in either platform administration or analyst roles as well as a cursory understanding of Splunk Enterprise Security
- Hands on, *NIX experience including CentOS/RedHat, Debian/Ubuntu and BSD including kernel level knowledge & experience
Bonus Points if I Have...
- Direct experience deploying Splunk Enterprise in a public cloud environment
- Firm understanding of PKI & encryption technology, especially SSL/TLS
- Experience with federated authentication services including SAML, OAuth and/or OpenID
- Software Defined Network experience (Layers 2 & 3 including routing protocols)
- Knowledge of MITRE ATT&CK and Cyber Kill Chain frameworks
- Experience in firewall administration, Palo Alto & Panorama preferred, including functions such as firewall ACL’s, DNS block lists and VPN
- Exposure to EDR solutions such as CrowdStrike, Carbon Black or TANIUM
- One or more of the following certifications: AWS or Azure certifications, Docker certifications, ISC2 Cloud Security Certification (CCSP), or SANS GIAC certifications
iM Getting To…
- Join a supportive, experienced team benefiting from continuous growth within an inclusive, encouraging and vibrant culture
- Onboard remotely and be included in all aspects of iManage life
- Collaborate cross functionally
- Help mentor, lead, and coach junior team members
- Focus on meaningful work, solving complex, real world issues utilizing the latest technologies and protocols
- Own your learning and growth within our career development support framework plus, access a huge range online learning library
- Receive competitive benefits that include; attractive salary based on market data, health/vision/dental/life insurance, 401k matching, performance bonuses, flexible working environment, generous PTO, unlimited sick days and so much more!
About iManage…
iManage is dedicated to Making Knowledge WorkTM. Over one million professionals across 65+ countries rely on our intelligent, cloud-enabled, secure knowledge work platform to uncover and activate the knowledge that exists inside their business content and communications.
We are continuously innovating to solve the most complex professional challenges and enable better business outcomes; Our work is not always easy but it is ambitious and rewarding.
So we’re looking for people who love a challenge. People who are happiest when they’re solving problems and collaborating with the industry’s best and brightest. That’s the iManage way. It’s how we do things that might appear impossible. How we develop our employees’ strengths and unlock their potential. How we find meaning in everything we do.
Whoever you are, whatever you do, however you work. Make it mean something at iManage.
Learn more at: www.imanage.com
Please see our privacy statement for more information on how we handle your personal data: https://imanage.com/privacy-policy/
#LI-Hybrid
#LI-LM1