Senior Cloud Security Engineer
Our Story: Litera, headquartered in Chicago, IL, is a fast-growing software company and one of the leading legal technology suppliers in the world. Serving over 90% of the world's largest law firms, our software is used by hundreds of thousands of lawyers every day. As a company recently selected for Crain's Best Places to Work in Chicago, we believe professional development, rewards programs, open communication, and transparent leadership all contribute to a unique and open work environment. Our employees are driven, energetic, passionate, and have the ability to make a direct impact on the future of the company.
The Opportunity: A Sr. Cloud Security Engineer at Litera is responsible for providing technical expertise and driving execution. This includes securing and defending Litera's fast-paced software development and SaaS business from global threats. A Sr. Cloud Security Engineer will be a part of an energetic and dynamic team of information security and IT professional to support our global business and customer base.
A Day in the Life:
- Work cross functionally to design, lead, and execute on cloud security projects to improve our existing security and compliance posture
- Work with the internal GRC team to identify, report, track and remediate cloud security risks and control deficiencies
Within 1 month, you will:
- Complete new hire on-boarding process including eLearning courses, instructor led training, peer shadowing, and more
- Learn Litera's platform by collaborating with teammates, attending training sessions, and through in-product guided experiences
- Meet your team and learn the nuts and bolts of our business and our path to success
- Become familiar with best practices, processes, and business tools including public cloud providers utilized by Litera
- Understand influencing metrics and how to influence time to value, end user experience, adoption, and growth
Within 3 months, you will:
- Select and implement security and alerting tools and then drive business action based on empirical data and your expertise
- Continuously analyze the security profile of our cloud applications and infrastructure and drive tailored and best practice cloud security configurations and design
- Manage the penetration and vulnerability testing and remediation program for our cloud estate
Within 6 months, you will:
- Mentor team members and upskill other engineers in DevOps, internal IT and engineering on cloud infrastructure and application security best practices
- Advance the business's secure software development lifecycle for cloud application by establishing and improving security practices for secure API integration, vulnerability mitigation, privileged access management, secrets management and encryption
- Participate in bi-annual performance review process
About You:
- Relevant experience of any cloud application security and adoption of security controls and best practices in a public cloud provider
- Enjoys utilizing knowledge of IAM, Data protection, transport, perimeter, gateway, and end-point security models in distributed cloud environments
- Knowledge of:
- Infrastructure as Code and DevOps principles
- Kubernetes, Dockers, and Containers
- Infrastructure automation and deployment of technical solutions leveraging Terraform and Ansible
- AZ-500: Microsoft Azure Security Technologies Certification or AWS Certified Security
- Demonstrate attention to detail in in a fast-paced environment
- A strong desire to influence and keep up with the latest trends and technologies
What Sets Us Apart?
- Have direct contact and work directly with our upper management team
- Work with a team that has a proven track record year over year
- You will be challenged and encouraged to broaden your skills
- Regular social & philanthropic events
- Access to personal development courses and tools in our internal learning management system
- Great health benefits, PTO and holiday policies, & more!