Cloud Security Engineer
- Full-time
- Contract type: Standard
Company Description
About Veolia North America
A subsidiary of Veolia Group, Veolia North America (VNA) offers a full spectrum of water, waste and energy management services, including water, and wastewater treatment, commercial and hazardous waste collection and disposal, energy consulting and resource recovery. VNA helps commercial, industrial, healthcare, higher education, and municipality customers throughout North America. Headquartered in Boston, Mass., Veolia North America has approximately 10,000 employees working at more than 350 locations across the continent. Please visit our website www.veolianorthamerica.com.
Job Description
BENEFITS
Veolia's comprehensive benefits package includes paid time off policies, as well as health, dental and vision insurance. In addition, employees are also entitled to participate in an employer sponsored 401(k) plan, to save for retirement. Pay and benefits for employees represented by a union are outlined in their collective bargaining agreement.
Position Purpose:
The Cloud Security Engineer designs, implements, and manages secure cloud architecture, protecting cloud-based assets from potential threats. This role develops and enforces cloud security policies, conducts risk assessments, and ensures compliance with industry standards.
Primary Duties/Responsibilities:
- Collaborate with IT, development, and operations teams to embed security into every aspect of the cloud and application security lifecycle.
- Advocate for security best practices, raising awareness and driving a security-first culture across the organization.
- Develop and implement automated security solutions to streamline security processes, improve efficiency, and enhance response capabilities.
- Collaborate with architecture and IT to design, implement, and manage security measures for our cloud environments.
- Develop and enforce security best practices for Infrastructure as Code (IaC) to ensure secure deployment and configuration management.
- Secure containerized environments, including Docker and Kubernetes, and ensure compliance with security benchmarks.
- Partner with DevOps teams to integrate security into the CI/CD pipeline for container deployment and management.
- Along with the Senior Application Security Engineer, lead application security initiatives, including secure code reviews, vulnerability assessments, and web application penetration testing.
- Develop and maintain application security standards and guidelines, ensuring they are integrated into the software development lifecycle.
- Stay abreast of the latest security threats, trends, and technologies, especially in cloud, IaC, and container environments.
- Proactively identify and investigate security threats by analyzing security logs, conducting threat hunting exercises, and implementing advanced detection mechanisms.
- Continuously evaluate and improve security tools and processes to address evolving security.
- Be action oriented, demonstrating high energy and an action-oriented approach to challenging work tasks, with a willingness to act swiftly and with minimal planning when opportunities arise.
- Build strong peer relationships by finding common ground and fostering problem-solving for mutual benefit, advocating for information security interests while remaining equitable to other groups, promoting teamwork and cooperation, and maintaining open and honest communication with colleagues.
Work Environment:
- This will be a hybrid role located in Milwaukee, WI.
Qualifications
Education/Experience/Background:
- Bachelor’s or Master’s Degree in Computer Science, Engineering, Information Security or extensive professional experience considered in place of a Bachelor's degree.
- Minimum of 7 years’ experience in Information Security within cloud-native or SaaS technology environments.
- 3-5 years of hands-on experience securing Infrastructure as Code, Application Security, and Policy as Code (PaC) using coding languages such as Python, Go, JavaScript, or YAML.
- Minimum two years of experience automating and scaling CIS benchmarks or equivalent standards.
Knowledge/Skills/Abilities:
- Proficiency in cloud platforms such as AWS, Azure, and GCP, container orchestration tools (Kubernetes, Docker), and Infrastructure as Code (Terraform, Ansible).
- Experience in application security practices and tools, including static/dynamic analysis and familiarity with OWASP standards.
- Be action oriented, demonstrating high energy and an action-oriented approach to challenging work tasks, with a willingness to act swiftly and with minimal planning when opportunities arise.
- Build strong peer relationships by finding common ground and fostering problem-solving for mutual benefit, advocating for information security interests while remaining equitable to other groups, promoting teamwork and cooperation, and maintaining open and honest communication with colleagues.
- Strong analytical, problem-solving, and communication skills.
- Ability to work collaboratively in a dynamic environment.
- Extensive experience writing technical and business-friendly security documentation.
- Strong written and verbal communication skills in English.
Additional Information
We are an Equal Opportunity Employer! All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status.
Disclaimer: The salary, other compensation, and benefits information is accurate as of the date of this posting. The Company reserves the right to modify this information at any time, subject to applicable law.