CliftonRecruiter Since 2001
the smart solution for Clifton jobs

Senior Cyber Security Engineer - Cloud Container Security (Virtual)

Company: The Home Depot
Location: Bogota
Posted on: November 12, 2021

Job Description:

POSITION PURPOSE

The Home Depot is able to offer virtual employment of this position in the following states: AL, AK, AS, AZ, AR, DE, DC, FL, GA, HI, ID, IL, IN, IA, KS, KY, LA, ME, MH, MD, MA, MI, MN, MS, MO, MT, NE, NH, NJ, NM, NY, NC, ND, MP, OH, OK, OR, PA, RI, SC, SD, TN, TX, UT, VT, VA, WA, WV, WI, WY.

Container Security Engineers work as part of the Threat Exposure Management service. This operational function aligns with Application Security and Vulnerability Management to provide full-stack assessment and security posture of containerized solutions. Container Security Engineers will work closely with Software Engineers and Architects as well as other teams within Cybersecurity to identify vulnerabilities and recommend remediation or risk mitigation strategies.

The Sr. Systems Engineer develops, maintains, and supports The Home Depot's technical infrastructure that includes network, hardware, database, and system software components.
The Sr. Systems Engineer is responsible for collaborating with and enabling product teams with infrastructure. Sr. Systems Engineers are expected to leverage tooling and custom applications to monitor and optimize performance. In addition, Sr. Systems Engineers may be involved in routine upgrades and application support as well as root cause and post-mortem analyses around security incidents and service interruptions.
As a Sr. Systems Engineer, you will be able to operate independently, though typically working as part of a team with varying skillsets.

MAJOR TASKS, RESPONSIBILITIES AND KEY ACCOUNTABILITIES
10% - Planning & Analysis:
Researches and analyzes business trends and behavioral data to identify opportunities for improvements and new initiatives
Drives the evaluation, development, and recommendation of specific technology products and platforms to provide cost-effective solutions that meet business and technology requirements
Researches and designs best fit infrastructure, network, database, and security architectures for products
Proactively creates and maintains tools for monitoring and support
Participates in project planning and reporting across multiple efforts
30% - Delivery & Execution:
Drives configuration, debugging, and support for infrastructure
Drives field and corporate roll-outs of technology
Drives the stand up of necessary system software, hardware, and equipment (physical or virtual) to meet changing infrastructure needs
50% - Support & Enablement:
Collaborates with product and project teams to understand needs and enable them with infrastructure
Supports technology architecture design review efforts for project and product teams
Leverages tooling and custom applications to monitor the operational status of applications, infrastructure, networks, databases, and security; optimizes and tunes performance as appropriate
Drives root cause analysis, debugging, support, and post-mortem analysis for security incidents and service interruptions
Maintains, upgrades, and supports existing systems and infrastructure to ensure operational stability
Opens and manages vendor problem tickets to resolution
Drives the production of in-house documentation around solutions
Monitors tools and proactively helps teams struggling with systems issues
Provides application support for software running in production
Creates scripts and tools that drive automation and enable product teams and end users to move towards self service
10% - Learning:
Keeps abreast of innovations and industry trends as well as changes to internal systems and determines how they impacts tools, training, and support necessary to keep systems up, running, and secure
Participates in and contributes to learning activities around modern systems engineering core practices (communities of practice)
Proactively views articles, tutorials, and videos to learn about new technologies and best practices being used within other technology organizations
NATURE AND SCOPE
Typically reports to the Systems Engineer Manager or Sr. Manager.
ENVIRONMENTAL JOB REQUIREMENTS
Environment:
Located in a comfortable indoor area. Any unpleasant condition would be infrequent and unobjectionable.
Travel:
Typically requires overnight travel less than 10% of the time.
Additional Environmental Job Requirements:
MINIMUM QUALIFICATIONS
Must be eighteen years of age or older.
Must be legally permitted to work in the United States.
Additional Minimum Qualifications:
Must be legally permitted to work in the United States
Education Required:
The knowledge, skills and abilities typically acquired through the completion of a bachelor's degree program or equivalent in a field of study related to the job.
Years of Relevant Work Experience: 1 years
Physical Requirements:
Most of the time is spent sitting in a comfortable position and there is frequent opportunity to move about. On rare occasions there may be a need to move or lift light articles.

Additional Qualifications:

  • Intermediate to Advanced knowledge:
    • Basic understanding of Cybersecurity Governance patterns: Policy -> Standards -> Control Solutions
    • CIA Triad
    • Exhibited knowledge of containers, serverless, microservices architecture s, including technologies such as Docker, container orchestration platforms (Kubernetes, etc.), and Cloud Service Provider serverless / cloud functions offerings
    • Secure SDLC Fundamentals
      • Basic Vulnerability Management and Application assessment - basic CVE and CWE analysis
      • Provide analysis and consultation for developers to aid them in identification and remediation of vulnerabilities in their pipelines
      • Knowledge of: Jenkins, Spinnaker, Concourse, Team City, Github Actions, Cloud Run, Azure Pipelines
      • Compliance and remediation knowledge of containers/images and their orchestrators in on-prem environments and Cloud.
      • Container Security Scanners Experience: Palo Alto Prisma Cloud Compute (formerly Twistlock), AquaSec, Sysdig (Falco), Wiz, Anchore Cloud, BlackDuck OpsSight, Clair, JFrog Xray, and/or Qualys Container SecurityOthers
        • Vulnerability Management and Application Security Scanner Experience: Qualys, Nessus, Rapid7, WebInspect, AppScan, OWASP ZAP, and/or BURP
        • System Virtualization and Serverless Computing fundamentals - system abstraction, application workload isolation
          • Cloud-hosted application/container fundamentals - public and/or private cloud (AWS, Azure, Google Cloud, Cloud Foundry)
          • Infrastructure as Code - demonstrated understanding of infrastructure as code (IAC) tools and approaches for the automated management of computing infrastructure and services.
            • Terraform and the like (Ansible, Chef, etc.)
            • DevOps fundamentals - rapid application development and deployment lifecycle enabled by containerization. Secure software development lifecycle SSDLC Understands processes surrounding developer and DevOps experience from code compilation to system image build (containers, system images), continuous integration and continuous deployment and the tests / validations that take place within that process.
            • Operating System fundamentals - preferably in the Linux space, but deep Windows skills are workable
            • Internetworking fundamentals - OSI model, troubleshooting at each layer, basic network capture analysis, network and application load balancing (L4, L7), client-server operating model.
            • Cloud certificationsPreferred Qualifications:
              1-3 years of relevant work experience
              Professional experience as an Infrastructure
              Engineer, Network Engineer, Database Engineer, or Security Engineer; familiarity with at least one other discipline, and interest in growing in the remaining disciplines
              Experience working as part of a collaborative, cross-functional, modern engineering team
              Experience with infrastructure, network, database, or security troubleshooting and remediation
              Experience installing and upgrading applications or databases and performing system maintenance
              Familiarity with system and environment analysis and design
              Familiarity with networking, system and hardware design and architecture, DBMS concepts, SQL programming, and client server concepts
              Familiarity with debuggers, runtime analysis, library systems, compiled programming, and software update tools
              Experience monitoring the operational status and performance of, and configuring as well as tuning, systems, networks, or databases
              Experience with operating system commands and utilities as well as scripting
              Experience with cloud platforms such as GCP and Azure
              Experience supporting a 24x7 retail operation
              Knowledge, Skills, Abilities and Competencies:Action Oriented: Taking on new opportunities and tough challenges with a sense of urgency, high energy, and enthusiasm
              Collaborates: Building partnerships and working collaboratively with others to meet shared objectives
              Communicates Effectively: Developing and delivering multi-mode communications that convey a clear understanding of the unique needs of different audiences
              Cultivates Innovation: Creating new and better ways for the organization to be successful
              Drives Results: Consistently achieving results, even under tough circumstances
              Global Perspective: Taking a broad view when approaching issues; using a global lens..... click apply for full job details

Keywords: The Home Depot, Clifton , Senior Cyber Security Engineer - Cloud Container Security (Virtual), Engineering , Bogota, New Jersey

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category
within


Log In or Create An Account

Get the latest New Jersey jobs by following @recnetNJ on Twitter!

Clifton RSS job feeds