Apply on Employer Site

Aptiv · 15 hours ago

Member of Technical Staff -Cloud Security

Troy, MI

Full-time

Onsite

Senior Level, Lead/Staff

$150K/yr - $206K/yr

8+ years exp

Aptiv is a global leader in delivering software for mission-critical intelligent systems, and they are seeking a Member of Technical Staff focused on Cloud Security. The role involves implementing modern DevSecOps technologies and ensuring the security of cloud-native development environments while collaborating with various product teams.

AutomotiveAutonomous VehiclesElectric VehicleRide SharingSoftware

No H1B

U.S. Citizen Only

Hiring Manager

Patrick Good Jr.

Responsibilities

Secure OnPrem and Public Cloud environments leveraging IAC

Establish, implement security policies for Docker, K8s and Public Cloud Platforms

Implement and automate Application Security policies by embedding SAST, DAST, API Security and Penetration Testing in the product development workflow

Accelerate container security with pipeline development

Drive vulnerability management and remediation in partnership with various product teams

Manage and maintain secure integrations between tools like Gitlab, Jenkins, JIRA, and many more

Implement solutions for event log collection and SIEM

Qualification

Cloud security expertiseDevSecOps principlesVulnerability managementInfrastructure as CodeApplication security policiesContainer securitySecurity penetration testingProgramming skillsPipeline automationAgile methodologyProblem-solvingCommunicationTeam collaborationGrowth mindset

Required

Experience in securing cloud-native development environments

Strong technical and communication skills

Unbounded desire to learn new technologies and their application

Expertise in cybersecurity principles with a desire to increase knowledge and strong analytical skills

Experience in Architecting security features on cloud providers (Azure AWS, GCP etc.), On Prem and Hybrid environments

Hands-on experience using tools like Coverity, BurpSuite, ZAP, Trivy, PRISMA Cloud, Tenable, Rapid7 etc

Working experience designing and implementing Application, network, back-end security-enhancing features

Deep knowledge of vulnerability management, remediation, and troubleshooting skills

Industry standards-based documentation, certification, and accreditation such as NIST SP 800-53, NIST 800-171, FEDRAMP, and Security Technical Implement Guides (STIGs) and bringing components into compliance with these standards

Strong foundation of DevSecOps principles, Infrastructure as Code including Terraform and Helm

Container and Cluster hardening

Excellent programming skills using Python, Go etc

Proficiency in pipeline automation leveraging Gitlab, Jenkins, Jira etc

Experience with Agile and Scrum

Self-managed, fast learner, and strong problem-solving skills

Excellent verbal and written communication skills and a good listener

Exceptional team player who works well in collaborative situations

Ability to brainstorm and represent competing ideas simultaneously

Growth mindset who is passionate about learning and applying new technologies

8+ years of relevant technical experience in cybersecurity with 2+ years of experience in software engineering

BE / MTech degree (Computer Science, Electronics Engineering, or equivalent technical degree)