SRE3 -Security

About The Role

• Design, develop, and implement tools to enhance the reliability, latency, availability, and scalability of our systems, with a specific focus on AWS security services including GuardDuty, SecurityHub, Config, WAF, and Firewall Manager.
• Implement metrics and measurements to monitor system reliability and availability, and take proactive steps to improve them, leveraging AWS monitoring and management tools.
• Develop and implement tools, training, and processes to enable scaling and prevent reoccurrence of problems in mission-critical products and services, with an emphasis on security best practices.
• Collaborate with the development team throughout the software development lifecycle to ensure reliability and scalability, minimizing refactoring or changes, while adhering to security guidelines.
• Manage the workload of the SRE team, prioritizing and delivering on multiple tasks simultaneously, including security-related initiatives.
• Provide thought leadership in architecture, design, and product features, offering feedback on products built on various platforms, with a focus on enhancing security posture.
• Design, code, test, and deliver software to automate manual operational tasks, including those related to security incident response and resolution.
• Troubleshoot priority incidents, conduct blameless post-mortems, and ensure permanent closure of incidents, with a focus on identifying and mitigating security vulnerabilities.
• Identify application patterns and analytics to support better service level objectives, with an eye towards improving overall security resilience.
• Design self-healing and resiliency patterns to improve system reliability, incorporating security controls into automated response mechanisms.
• Design automated solutions for software and product upgrades, change management, and release management, ensuring security considerations are integrated throughout.
• Coach or manage teams as necessary, providing guidance on security best practices and ensuring adherence to security policies and procedures.
• Participate in 24×7 support coverage as required, including on-call rotations for security incidents and emergencies.
• Must be self-motivated and able to work with minimal supervision, demonstrating a proactive approach to identifying and addressing security challenges.

• Bachelor’s degree or equivalent experience in a software engineering discipline.
• 6-10 years of experience in software development, with a focus on security-related initiatives.
• Proficiency in Python/Go or other relevant programming languages, with experience developing security automation tools.
• Expertise in designing, coding, testing, and delivering software within at least one technology stack, with a demonstrated understanding of security principles and best practices.
• Experience in distributed computing, with a focus on designing and implementing secure messaging infrastructure using Apache Kafka on AWS and On-premises.
• Strong experience in designing and building highly available, high-volume messaging infrastructure using Apache Kafka on AWS and On-premises, including Kafka security (Encryption and Authentication with SSL, SASL, ACLs).
• Hands-on experience with DevOps tools such as Jenkins, Ansible, and Git workflows, with a focus on automating security-related tasks and processes.
• Proficiency in infrastructure provisioning tools like Terraform or Ansible, with experience deploying and managing security controls within cloud environments.
• Hands-on experience deploying and operating applications using IaaS and PaaS on Amazon AWS, with a focus on implementing security best practices and controls.
• Working knowledge of infrastructure components such as routers, load balancers, cloud products, container systems, compute, storage, and networks, with a focus on integrating security controls.
• Excellent debugging and troubleshooting skills, with a demonstrated ability to identify and mitigate security vulnerabilities and incidents.