Apply on Employer Site

CARFAX · 1 hour ago

Senior Security Engineer - Cloud Specialist

Columbia, MO

Full-time

Hybrid

Mid, Senior Level

4+ years exp

CARFAX is a company dedicated to helping consumers make informed decisions with their vehicle history information. They are seeking a Senior Security Engineer - Cloud Specialist to safeguard the organization's information assets by designing and maintaining robust security measures, identifying vulnerabilities, and ensuring compliance with security policies.

Automotive

Work & Life Balance

H1B Sponsor Likely

Responsibilities

Oversee and operate continuous monitoring of network traffic, systems, and applications to detect, analyze, and respond to cybersecurity threats and incidents, utilizing advanced security tools and methodologies for proactive defense

Operate continuous monitoring of public, private, or hybrid cloud environments, applications, and services to detect, analyze, and respond to security threats and findings, utilizing advanced cloud management and security tools

Lead cloud program functions, including detection, triage, investigation, containment, remediation, and reporting, ensuring minimal impact on business operations and continuously improving response processes through automation

Leveraging an offensive security mindset, proactively identify opportunities to enhance security measures, streamline processes, and optimize tooling, leveraging an offensive security mindset

Conduct in-depth analysis of cloud-related findings in systems and configurations to determine risk and assess the scope of issues and root cause, using standard practices

Develop and maintain a robust cloud management program that enhances the organization's cloud posture. This involves identifying and assessing risks within the cloud infrastructure, implementing and optimizing security controls, and ensuring regulatory compliance

Perform threat hunting activities using advanced analytical techniques and tools to identify and mitigate undetected threats, and potential vulnerabilities within the organization's cloud systems

Develop and deliver risk-based performance and security reports that provide actionable insights and recommendations by analyzing findings, threats, and vulnerabilities, informing decision-makers of the current cloud posture and ensuring alignment with organizational risk management strategies

Create and maintain comprehensive security documentation, including policies, procedures, and guidelines, and support security awareness training programs to educate staff about cyber threats, safe practices, and fostering a security-conscious culture

Qualification

Cloud Security OperationsMicrosoft AzureAmazon Web Services (AWS)Cloud ManagementPythonPowerShellCloud NetworkingContainer SecurityProblem-solvingCommunication Skills

Required

Bachelor's degree in computer science, Information Technology, Cloud Computing, or a related field, or equivalent work experience in information technology

4-7 years of experience in cloud management within a Cloud Security Operations team with a focus on Microsoft Azure and Amazon Web Services (AWS)

Strong understanding of cloud technologies, tools, and frameworks (e.g., cloud management platforms, cloud security tools) and knowledge of programming languages and automation scripts (e.g., Python, PowerShell)

Skilled in interpreting and analyzing data from multiple cloud management and security tools and sources to detect indicators of performance issues and malicious activities

Deep technical expertise in public and private cloud compute infrastructure and cloud-native technologies

Deep technical knowledge of security threats, risks, and vulnerabilities within IaaS, PaaS, and SaaS environments and integrations

Experience in cloud networking architecture and hybrid-cloud operations, network and encryption experience, including virtual private networks (VPNs), IPsec, SSL/TLS, LDAP, and public key infrastructure (PKI)

Experience in a multi-platform environment with containerized or VM-based Linux and Windows

Experience with container risk monitoring at both build and runtime and developing and maintaining expertise in cloud-native security solutions, including container security, Kubernetes, and cloud networking and security services

Excellent problem-solving skills, written and verbal communication skills, with an emphasis on clear and concise risk-based reporting; ability to work both collaboratively in a team environment and independently; eagerness to learn and a proactive attitude towards professional development

Benefits

Competitive compensation, benefits and generous time-off policies

4-Day summer work weeks and a winter holiday break

401(k)/DCPP matching

Annual bonus program

Casual, dog-friendly, and innovative office spaces

Company

CARFAX

Glassdoor3.7

CARFAX provides vehicle history for used car buyers, sellers, and the automotive industry.

Founded in 1986

Centreville, Virginia, USA

1001-5000 employees

https://www.carfax.com/

H1B Sponsorship

CARFAX has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2025 (18)

2024 (25)

2023 (11)

2022 (23)

2021 (24)

2020 (27)