At Cloudera, we believe that data can make what is impossible today, possible tomorrow.

Staff Security Engineer

Security EngineerSecurity EngineerFull TimeRemoteTeam 1,001-5,000Since 2008H1B SponsorCompany Site LinkedIn

Location

Illinois + 2 more

Posted

31 days ago

Salary

Not specified

3 yrs expEnglishAnsibleAWSAzureCloudGoogle Cloud PlatformJavaJava ScriptJenkinsKubernetesMicroservicesPythonSplunkTerraformType ScriptVaultGo

Job Description

• Develop, deploy, and support self-service security tools and services that constitute the internal security platform. • Contribute knowledge and support for security projects, including support of tool integration and implementation of new security capabilities within the platform. • Support & improve security integrations into CI/CD pipelines (SAST, DAST, SCA, IAST, etc.) and developer workflows. • Maintain deployment of secure multi-cloud environments (AWS, Azure, GCP) using Infrastructure as Code (e.g., Terraform, Ansible). • Assist with security architecture reviews of new products and features, contribute to threat models, and support adoption of security-as-code best practices. • Work with the Site Reliability Engineering (SRE) team to maintain & respond to automated monitoring and security integrations for production systems. • Collaborate with internal security teams to support compliance, incident response, and operational security requirements. • Enable and support the adoption of security engineering best practices and standards across the organization. • Evangelize the use of security platform tooling and deliver high-impact DevSecOps training and outreach to internal development & engineering teams. • Participate members of the Security team and security advocates in advanced DevSecOps principles, platform engineering, and secure coding practices.

Job Requirements

Experience developing, deploying, or supporting security tools and services (e.g., security scanners, secrets management, policy engines) used by other engineering & security teams.
Knowledge of DevSecOps principles and practical experience implementing security controls in CI/CD pipelines (e.g., Jenkins, GitLab CI, GitHub Actions).
Experience with large-scale cloud security engineering in AWS, Azure, and Google Cloud, including automated network provisioning and secure configuration management.
Experience with code review of one or more programming languages (Java, Python, Go, JS/TS).
Knowledge or experience in Kubernetes operations, security, and using tools like Helm for deployment and policy enforcement.
Experience using and supporting Infrastructure as Code (IaC) & configuration management tools like Terraform, Cloudformation, or Ansible.
Experience with operating or supporting security tools and platforms, including HashiCorp Vault for secrets management, Splunk for security monitoring and analytics, and CrowdStrike or similar EDR solutions for endpoint security.
Working knowledge of web service frameworks, distributed architectures (event-driven, microservices, serverless), and their corresponding security challenges.
Experience performing security reviews, developing and reviewing threat models, and conducting risk assessments against complex systems.
Security certifications (CISSP, SSCP, Security+, etc.) are a bonus but not required.
Familiarity with Cloudera’s products or other distributed computing systems is a strong bonus, or a willingness to dig into our products to truly understand how they work.