Your Role and Responsibilities- Maintain and expand function NG underlay cloud provisioning systems including a large Ubuntu and RHEL Linux, Kubernetes, bare metal, and virtualized systems fleet.
- Develop centralized configuration code via SALT and Ansible.
- Identify and remediate security vulnerabilities and issues.
- Support development, security, and other infrastructure teams from within and outside the organization in making use of core VPC infrastructure.
- Work with and make improvements to SALT and Ansible code automation.
- Developing and supporting Jenkins pipelines and artifactory
- Providing support for Atlassian products
- Coordinate with various teams for datacenter turn-ups, decommissions, DR activities, and maintenance.
- Continually improve systems and processes with regard to automation and monitoring.
- Lead and engage team in stand-ups and project meetings.
- Participate in 12×7 on-call rotation.
- Collect and produce evidence in response to audit requests for supported service(s).
- Streamline audit engagements by applying SRE principles to develop strategies and tooling that automate evidence collection and production and anticipate data production requests.
- Develop tools and strategies to assess the health of security controls and adherence to policy, process, and procedures requirements.
- Ensure proper documentation and rapid remediation of identified deviations.
- Serve as a primary SME and security focal for service control implementation, design, and operating procedures in audit engagements.
- Drive risk culture transformation in service teams.
- Collect and provide evidence for SOC2, PCI, HIPPA, MSAC, and C5 audits Leverage learning from audits to begin developing strategies to automate evidence collection.
- Work on PSIRT ticketing.
- Work within the IRM system and PCE risk management systems.
Required Technical and Professional Expertise
- Linux/Unix server hardening/bare metal/virtual
- Firm understanding of networking principals and technologies, including firewall rules and proxies.
- Identify and remediate security vulnerabilities and issues.
- Continually improve systems and processes with regard to automation and monitoring
- Excellent verbal and written communication skills
- Highly responsible, motivated, able to work with little direction.
- Working knowledge of common security frameworks, such as SOC2, CONMON, HIPPA, MSAC, PCI, and C5
- Process automation experience.
- Deep technical understanding of cloud concepts, able to learn and explain IBM cloud technical control implementation.
Preferred Technical and Professional Expertise
- Experience working with and triaging FIM, EDR, CrowdStrike, and Nessus Qradar technologies.
- Working knowledge of Jenkins pipelines
- Working knowledge of Artifactory
- Working knowledge of Kubernetes & Docker.
- Prior experience with Atlassian Jira and Confluence system administration
- Experience working with and triaging FIM, EDR, CrowdStrike, and Nessus Qradar technologies.
- Prior experience with compliance programs such as FFIEC or FedRAMP/ FISMA, HIPAA, GDPR, SOC 2, PCI, NIST, ISO, ISMAP, C5, ITAR etc.