As a Detection Engineer II for Cloud Security Management (CSM), you will deliver novel detection content to our security products in order to notify customers when risky cloud configuration changes, cloud identity risks and potential attack paths are detected in their cloud environments using a plethora of observability and security data.
You will creatively identify ways to provide coverage of security frameworks and benchmarks to our customers and identify areas of improvement for technology, process and detection for us.
Together with your team, you will research cloud infrastructure vulnerabilities and misconfigurations, as well as attacker techniques against cloud-native technologies and evangelize your findings with the community. Youll apply data-driven insights to generate the highest quality security findings for our customers. Additionally, youll serve as the voice of the customer to continuously provide product feedback through our partner product teams.
What Youll Do:
Continuously learn everything about detecting attack paths, identity risks, misconfigurations, and vulnerabilities in cloud-native environments and pour it back into building a great cloud security product for our customers
Leverage Open Policy Agent (OPA) to build and maintain highly contextualized detections for our Cloud Security Posture Management (CSPM) product using OPAs Rego policy language to protect our customer cloud environments and test those detections end-to-end with Terraform
Model cloud native technical controls across a variety of both governmental and commercial compliance frameworks and security benchmarks to help our customers achieve both compliant and secure cloud configuration state
Partner with product management, engineering, security research and customers to develop roadmaps of content for cloud security and compliance concerns
Identify and drive inefficiencies out of content development processes through the creation of innovative tooling, automation; shepherd platform issues impacting content development and user experience through engineering to completion
Evangelize yourself and the security brand through blog posts, documentation, webinars, and workshops. Present at conferences to highlight the challenges and successes in the field
You will creatively identify ways to provide coverage of security frameworks and benchmarks to our customers and identify areas of improvement for technology, process and detection for us.
Together with your team, you will research cloud infrastructure vulnerabilities and misconfigurations, as well as attacker techniques against cloud-native technologies and evangelize your findings with the community. Youll apply data-driven insights to generate the highest quality security findings for our customers. Additionally, youll serve as the voice of the customer to continuously provide product feedback through our partner product teams.
What Youll Do:
Continuously learn everything about detecting attack paths, identity risks, misconfigurations, and vulnerabilities in cloud-native environments and pour it back into building a great cloud security product for our customers
Leverage Open Policy Agent (OPA) to build and maintain highly contextualized detections for our Cloud Security Posture Management (CSPM) product using OPAs Rego policy language to protect our customer cloud environments and test those detections end-to-end with Terraform
Model cloud native technical controls across a variety of both governmental and commercial compliance frameworks and security benchmarks to help our customers achieve both compliant and secure cloud configuration state
Partner with product management, engineering, security research and customers to develop roadmaps of content for cloud security and compliance concerns
Identify and drive inefficiencies out of content development processes through the creation of innovative tooling, automation; shepherd platform issues impacting content development and user experience through engineering to completion
Evangelize yourself and the security brand through blog posts, documentation, webinars, and workshops. Present at conferences to highlight the challenges and successes in the field
Requirements:
A previous background in cloud security engineering, detection engineering, or other cloud security function
Experience operating in at least one public cloud platform (AWS, GCP, Azure) and other cloud native technologies (Kubernetes, Docker, Terraform)
Understanding of modern cloud native attacker techniques and familiarity with technical controls to prevent and detect these attacks
Understanding of compliance and security frameworks and benchmarks in order to map these frameworks to technical controls such as CSPM
Basic proficiency with Python, Golang or other programming languages
A previous background in cloud security engineering, detection engineering, or other cloud security function
Experience operating in at least one public cloud platform (AWS, GCP, Azure) and other cloud native technologies (Kubernetes, Docker, Terraform)
Understanding of modern cloud native attacker techniques and familiarity with technical controls to prevent and detect these attacks
Understanding of compliance and security frameworks and benchmarks in order to map these frameworks to technical controls such as CSPM
Basic proficiency with Python, Golang or other programming languages
This position is open to all candidates.
