We believe in staying one step ahead of threats, hackers and malicious activities across the network, cloud, endpoint and mobile devices. If you are a highly motivated, hard-working, intelligent, and passionate individual, then we have a role for you!

As a member of security engineering team you will report to the AVP Cloudways.

This position will be a part of the Security Engineering (SE) team responsible for establishing a unified enterprise security architecture to secure Cloudways’s information assets, services, and the products that depend on them, building trust with customers and stakeholders, and protecting the privacy of Cloudways’s customers and employees. The candidate will have the opportunity to directly drive and contribute with projects associated across all types including: Infrastructure, Platform, and Software as a Service (IaaS/PaaS/SaaS).

Responsibilities:

YOU MUST HAVE:

WE VALUE:

• Working with all stakeholders to implement cloud security architectures and best practices by determining security requirements and proposing solutions that balance business requirements with information and cyber security requirements.
• Assisting in guiding, prioritizing, and measuring our efforts in achieving and maintaining onsite and cloud security.
• Performing internal cloud services security reviews and recommending changes or enhancements for identified security design gaps in existing and proposed architectures.
• Aligning security standards, frameworks and policies with overall business and technology strategy. Driving organization towards certifications such as ISO 27001/ others
• Designing and building prototype security solutions, including security specific test cases.
• Performing and facilitating security reviews and threat modeling exercises, identifying attack vectors that may be used to exploit cloud services and working collaboratively to remediate.
• Drive on-going security testing for vulnerabilities utilizing both automated and manual testing tools.
• Identifying and communicating current and emerging onsite and cloud security threats, including specifying requirements and controls to mitigate threats as they emerge.
• Assisting with security reviews of third party vendors and services providers when needed.
• Assisting with Incident Response as required and contributing to GDPR breach notification efforts.
• Working cross company to identify and implement GDPR requirements, related to cloud services offerings.
• Bachelor's degree
• 2+ years Technical leadership experience in the software security field including customer interfacing
• Minimum 6+ years familiarity with Cloud-based applications, server based software, mobile applications and embedded software
• Minimum 5+ years with incorporating cyber security into software development processes and programs
• Master's degree in Computer Science or Cybersecurity
• Certifications in security and privacy demonstrating deep practical knowledge such as CSSLP or CISSP
• Background in systems engineering
• Strong knowledge of secure software development lifecycle and practices such as threat modeling, security reviews, penetration tests, and security incident response
• Understanding of security by design principles and architecture level security concepts
• Up to date knowledge of current and emerging security threats and techniques for exploiting security vulnerabilities
• Excellent communication and leadership skills