Senior Cloud Security Engineer

📋 Description

• Deliver proactive and preventive cloud security capabilities that address contemporary threats, including those stemming from AI-driven attack methods.

• Expand into advanced security areas such as AI/ML security, container security, and enhanced threat detection and response.

• Create and implement cloud security measures that decrease risk and enhance capabilities for prevention, detection, and response.

• Aid in securing multi-cloud and hybrid environments across AWS, Azure, GCP, and on-premises infrastructures.

• Establish security measures for AI/ML workloads, which encompass the protection of data pipelines, model services, and AI-integrated applications.

• Identify and assist in mitigating AI-specific threats such as prompt injection, data poisoning, and model/data leakage.

• Employ DevSecOps and Infrastructure-as-Code (IaC) methodologies to incorporate security into CI/CD pipelines.

• Collaborate with product and platform teams to apply secure architectural patterns and cloud security standards.

• Leverage CNAPP platforms and associated tools to discover and rectify risks across cloud, container, and AI ecosystems.

• Implement and sustain security measures for containerized environments, including Kubernetes cluster configuration, image scanning, and runtime protection.

• Support monitoring, detection, and response capabilities, including integration with cloud-native telemetry and security tools.

• Engage in threat modeling and risk assessments (Attack Surface Management, Data Security Posture Management, etc.) for cloud-native and AI-enabled systems.

• Design and maintain automation solutions to enhance security coverage and operational efficiency.

• Deploy and manage infrastructure utilizing Infrastructure-as-Code (IaC) tools and best practices.

• Contribute to security initiatives and projects, aiding in delivering measurable enhancements to the organization's security posture.

• Assist in security operations and internal service requests, contributing to ongoing process improvements.

⛳️ Requirements

• Bachelor’s degree or equivalent in Computer Science, Information Security, or a related discipline.

• Experience in designing and securing cloud and hybrid environments (AWS, Azure, GCP, On-Premise).

• Proficiency in one or more programming or scripting languages, with experience in interacting with cloud APIs and automation workflows.

• Strong grasp of cloud security fundamentals, encompassing IAM, network security, encryption, and secure architecture design.

• Experience in implementing DevSecOps practices and securing Infrastructure-as-Code (IaC) workflows.

• Familiarity with deploying and securing container technologies (Kubernetes, Docker, EKS, GKE, AKS).

• Understanding of security risks associated with AI/ML systems, including prompt injection, data poisoning, and model/data leakage.

• Knowledge of data security principles within AI training and inference pipelines.

• Experience in implementing basic security controls, logging, and monitoring for AI-enabled services.

• Awareness of AI security frameworks such as OWASP Top 10 for LLMs and NIST AI Risk Management Framework.

• Experience utilizing CNAPP platforms to identify and address cloud security risks.

• Familiarity with IaC scanning, cloud security posture management, and runtime detection tools.

• Understanding of concepts related to security prevention, detection, and response.

• Experience in building and securing scalable cloud architectures across application, network, and data layers.

• Familiarity with serverless and event-driven architectures (e.g., AWS Lambda, GCP Cloud Functions, Azure Automation).

• Relevant certifications (e.g., AWS, Azure, GCP, Security+) are advantageous.

• Experience working in multi-OS and distributed environments.

🏝️ Benefits

• Medical insurance

• Dental insurance

• Vision insurance

• Matching 401(k) plan

• Paid time off

• Wellness program

• Employee discounts on Sony products