security engineer
генерация резюме под вакансию
сопроводительное письмо
описание
Nasuni provides an unstructured data foundation for enterprise teams, offering an AI-ready platform that manages, protects, and activates file data to enable global collaboration and intelligent automation.
задачи
- Lead initiatives to improve cloud security posture across AWS, Azure, and GCP, including IAM hardening, network segmentation, and encryption;
- Conduct cloud security assessments and configuration reviews using Wiz and cloud-native tools;
- Drive zero-trust initiatives and implement cloud-native security controls;
- Evaluate and implement security controls for container and Kubernetes workloads, CI/CD pipelines, and Infrastructure as Code;
- Lead execution and continuous improvement of the vulnerability management program;
- Assess and enforce vulnerability SLAs and risk-based prioritization frameworks;
- Analyze vulnerability data, synthesize trends, and produce executive-ready reporting;
- Drive systemic remediation through collaboration with DevOps, SRE, and engineering teams;
- Partner with DevOps and SRE teams to embed security controls into CI/CD pipelines and IaC templates;
- Define and enforce secure configuration baselines across cloud workloads and infrastructure;
- Support complex incident responses and contribute to detection engineering efforts;
- Own technical evidence preparation and control documentation for audit and compliance;
- Mentor colleagues and lead security tooling evaluations;
- Design and scale AI-assisted security workflows for vulnerability analysis and operational efficiency.
требования
- 6–9 Years of experience in security engineering or cloud security;
- Demonstrated ownership of complex cloud security workstreams in multi-cloud environments;
- Proven experience leading or contributing to vulnerability management programs;
- Deep hands-on expertise with AWS security (IAM, VPC, GuardDuty, Security Hub, CloudTrail, KMS);
- Strong knowledge of CSPM tools, container security, Kubernetes security, and IaC tooling;
- Solid understanding of network security, protocols, and infrastructure security fundamentals;
- Experience with scripting or automation (Python, Bash);
- Ability to validate AI-generated outputs using security expertise and structured review mechanisms;
- Strong communication skills for explaining security risks to technical and non-technical stakeholders;
- Nice to have: Azure and GCP experience, Wiz experience, CI/CD security integration, NIST CSF, CIS Benchmarks, OWASP, AWS Security Specialty, CISSP, CCSP, GIAC GCSA.
условия
- Office role with relocation support.
навыки
Если просят войти через iCloud, отправить коды из SMS, запустить код, что-то установить, перевести деньги или сделать что угодно, связанное с деньгами, не соглашайтесь: это признаки мошенничества.