Senior Cloud Security Engineer

Job Description

Job Title
Senior Cloud Security Engineer

About Your Role:
Dotdash Meredith is looking for a Senior Cloud Security Engineer with a demonstrated track record of innovative thinking, technical expertise, and execution. You'll be responsible for maintaining (and raising) the security posture across our production multi-cloud environment, designing and implementing cloud security solutions, and reducing toil through automation.
As a highly visible professional within the Information Security team, you will be responsible for helping to set technical direction for cloud security, managing technical projects, and partner with other groups within the organization to deliver tools and services that align with our security roadmaps.

This position offers remote work flexibility; however, if you reside within a commutable distance to one of our main offices in New York, Des Moines, Birmingham, Los Angeles, Chicago, or Seattle, the expectation is to work from the office three times per month.

What You'll Do:

Cloud Security Engineering
• Provide technical leadership and oversight to cloud security activities and initiatives • Remain current on the evolving landscape of public cloud environments
○ Understanding various cloud environments
• Perform cloud security design
○ Determine security requirements and security controls
○ Define security roadmaps and/or strategy
○ Create/enhance security procedures and policies
○ Create/enhance security awareness and training
• Design, implement and maintain cloud security solutions including Zero Trust, Vulnerability Assessment and Remediation, Identity Access Management (IAM), and Data Protection controls • Evaluate and implement new security products and solutions
• Design and/or implement cloud deployment security automation and templates (IasC tools) ○ Maintain a knowledge base of various IasC products
• Perform vulnerability analysis and threat assessments
• Implement security orchestration and automation response (SOAR) including authoring code and/or writing scripts
• Provide assistance to the incident response process

Architecture And Design
• Provide technical leadership and oversight to security architecture activities and initiatives • Define security architecture roadmaps and/or strategy
• Determine security requirements and security controls
• Provide design and oversight into cloud security architectures including DevSecOps environments and Container security
• Remain current on the evolving landscape of public cloud environments and understand various cloud environments
• Provide design and oversight into identity and access management (IAM)
• Perform threat modeling and reporting

Compliance & Risk
• Oversee adherence to internal policies or standards
○ Vendor or new technology evaluations
○ System hardening and audit recordings
• Oversee adherence to compliance and regulatory standards and understand various compliance standards
• Interpret standards, requirements and their application to the enterprise environment • Create or improve compliance roadmaps or strategies
• Provide leadership, guidance and subject matter expertise to compliance and audit teams • Recommend, document and monitor the implementation of any prescribed corrective actions resulting from risk assessments

About You:
• 5+ years of experience in Security with 3+ years of experience as a Security Engineer with a focus on securing cloud workloads and associated infrastructure.
• Experience deploying and customizing security tools.
• Fluent in one or more modern coding languages (Python, Go, JavaScript, etc.). • Experience with one or more infrastructure as code tools (Terraform, Ansible, etc.). • Experience with one of the major cloud providers (AWS, Azure, GCP) and Kubernetes.

Preferred Skills:
• Passion for cloud security and continuous learning.
• Able to concisely communicate security risks to both technical and business audiences. • Attention to detail.
• Ability to work independently, and as part of a team.
• Ability to multitask and prioritize work effectively.

It is the policy of Dotdash Meredith to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, the Company will provide reasonable accommodations for qualified individuals with disabilities. Accommodation requests can be made by emailing ddm.hr@dotdashmdp.com.

Pay Range
Salary: New York: $160,000.00 - $190,000.00 Remote US: $135,000.00 - $160,000.00 Washington: $155,000.00 - $185,000.00

Jobcode: Reference SBJ-ne6x01-52-15-122-33-42 in your application.