Our Story: Litera, headquartered in Chicago, IL, is a fast-growing software company and one of the leading legal technology suppliers in the world. Serving over 90% of the world's largest law firms, our software is used by hundreds of thousands of lawyers every day. As a company recently selected for Crain's Best Places to Work in Chicago, we believe professional development, rewards programs, open communication, and transparent leadership all contribute to a unique and open work environment. Our employees are driven, energetic, passionate, and have the ability to make a direct impact on the future of the company.

The Opportunity: A Sr. Cloud Security Engineer at Litera is responsible for providing technical expertise and driving execution. This includes securing and defending Litera's fast-paced software development and SaaS business from global threats. A Sr. Cloud Security Engineer will be a part of an energetic and dynamic team of information security and IT professional to support our global business and customer base.

A Day in the Life:

• Work cross functionally to design, lead, and execute on cloud security projects to improve our existing security and compliance posture
• Work with the internal GRC team to identify, report, track and remediate cloud security risks and control deficiencies

Within 1 month, you will:

• Complete new hire on-boarding process including eLearning courses, instructor led training, peer shadowing, and more
• Learn Litera's platform by collaborating with teammates, attending training sessions, and through in-product guided experiences
• Meet your team and learn the nuts and bolts of our business and our path to success
• Become familiar with best practices, processes, and business tools including public cloud providers utilized by Litera
• Understand influencing metrics and how to influence time to value, end user experience, adoption, and growth

Within 3 months, you will:

• Select and implement security and alerting tools and then drive business action based on empirical data and your expertise
• Continuously analyze the security profile of our cloud applications and infrastructure and drive tailored and best practice cloud security configurations and design
• Manage the penetration and vulnerability testing and remediation program for our cloud estate

Within 6 months, you will:

• Mentor team members and upskill other engineers in DevOps, internal IT and engineering on cloud infrastructure and application security best practices
• Advance the business's secure software development lifecycle for cloud application by establishing and improving security practices for secure API integration, vulnerability mitigation, privileged access management, secrets management and encryption
• Participate in bi-annual performance review process

About You:

• Relevant experience of any cloud application security and adoption of security controls and best practices in a public cloud provider
• Enjoys utilizing knowledge of IAM, Data protection, transport, perimeter, gateway, and end-point security models in distributed cloud environments
• Knowledge of:
  • Infrastructure as Code and DevOps principles
  • Kubernetes, Dockers, and Containers
  • Infrastructure automation and deployment of technical solutions leveraging Terraform and Ansible
  • AZ-500: Microsoft Azure Security Technologies Certification or AWS Certified Security
• Demonstrate attention to detail in in a fast-paced environment
• A strong desire to influence and keep up with the latest trends and technologies

What Sets Us Apart?

• Have direct contact and work directly with our upper management team
• Work with a team that has a proven track record year over year
• You will be challenged and encouraged to broaden your skills
• Regular social & philanthropic events
• Access to personal development courses and tools in our internal learning management system
• Great health benefits, PTO and holiday policies, & more!