Principal Security Engineer
If you are a current Motorola Solutions employee, please click this link to apply through your Workday account.Company Overview
At Motorola Solutions, we create technologies our customers refer to as their lifeline. Our technology platforms in communications, software, video and services help our customers work safely and more efficiently. Whether it’s helping firefighters see through smoke, enabling police officers to see around street corners, or reliably keeping the lights on in homes and businesses around the world, our work supports those who put their lives on the line to keep us safe. Bring your passion, potential and talents to Motorola Solutions, and help us usher in a new era in public safety and security.
Department OverviewThe position is part of our Cloud Infrastructure Engineering (CIE) organization which operates and manages our Public Safety Application SaaS platform. You will be part of a team that is responsible for the security of these mission critical systems that are used everyday by public safety and government agencies across multiple countries. In this role, you will also be working in a world-class team that uses state of the art technologies and techniques. Your efforts will help to shape engineering culture and standards across our software product organization.
Job Description
We are open to candidates working from our offices in Chicago, Salt Lake City, Seattle, or Plano, TX.
We are seeking a strong candidate to help us deploy and manage cybersecurity components that protect our SaaS Infrastructure running in Azure and AWS.
Responsibilities:
Able to create tooling to solve a problem or provide functionality by: gathering requirements, creating an architecture, and implementing the architecture and tooling in an appropriate language
Deploy the tooling & architecture via a CI/CD pipeline
Implement automated testing to validate the proper operation and error handling of the tooling
Operational security configuration of the SaaS platform, including: WAF rules, IDS/IPS settings, Azure policies, and controls over all administrative accounts
Member of a small team who are responsible for the security posture of our deployments in AWS and Azure.
Creating automated tools to help monitor security alerts.
Creating automated tools to help identify configuration changes.
Deploy, configure, and manage our container based HIDS solution based on Twistlock.
Manage our WAFs based on Modsecurity in AWS and Signal Sciences in Azure
Evaluate, test and recommend new cloud security tools (WAF, API Management, IPS/IDS)
Creating, deploying and maintaining tools for AV, Code Signing, Automated Inventory, user access reviews, and associated dashboards.
Responsible for platform operational security configuration, WAF rules, IDS/IPS settings, NSG setting, PSPs, Azure policies, and controls over the entirety of the infrastructure.
Reviews security settings under control of product development teams.
Work with compliance specialists to identify and manage artifacts needed for proof of compliance.
Work with System Monitoring Specialists in the SOC to detect and respond to indicators of compromise.
Documenting the system and controls.
Must become familiar with our IRP
Will fill in as Incident Coordinator as needed
Desired Qualifications:
Strong familiarity with cloud technologies including Azure and AWS environments.
Must be familiar with Azure Security Center and cloud security best practices.
A plus if they have experience with AWS Security controls, and AWS Trusted Advisor.
Must be familiar with docker and tools used to secure docker deployments such as Twistlock, Aqua, StackRox or NuVector.
Must have familiarity with Kubernetes. Would be a plus if they have familiarity with NGINX, and/or SignalSciences WAF.
Must have familarity with CIS benchmarks including the Docker, Linux, and Kubernetes benchmarks.
Good interpersonal skills and ability to collaborate with a variety of work partners including developers, product management, tech support, legal, and senior management.
Strong familiarity with Linux is required.
Strong scripting experience with Shell Scripts, and Python.
Strong familiarity with the functions of WAF and IDS components.
Familiarity with using Elasticsearch/Kibana.
Basic Requirements
Must be a U.S. citizen with the ability to obtain necessary security clearance as required by government contracts. Some contracts may have higher-level clearance requirements.
5+ years of security engineering expereince
High school diploma
Travel RequirementsUnder 10%
Relocation ProvidedNone
Position TypeExperienced
Referral Payment PlanYes
EEO Statement
Motorola Solutions is an Equal Opportunity Employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran's status, or, any other protected characteristic.