Jobs
RStudio logoRStudio

Cloud Security Engineer

Posit creates great software that helps people understand data and make better decisions in real-world applications. Our core offering is an open source data science toolchain, and we aim to make it available to everyone, regardless of their economic means.

The Security team seeks a Cloud Security Engineer to help secure the Posit cloud infrastructure. This highly technical role requires a security mindset and hands-on keyboard work to operate, administer, and automate existing and future security tools. This role requires a pragmatic approach to solving problems and the ability to execute.

The Security team is part of the Information Operations department, and this position will report to the Director of Security Operations. The Security team is responsible for: 

  • Security Awareness
  • Application Security
  • Workstation Security
  • Cloud Security 
  • 3rd party Vendor Risk Management (Security)
  • Vulnerability Management

You will partner with Engineering and Cloud Operations teams to integrate security practices, requirements, and guidelines into their workflow. You must possess wide technical, business, and industry knowledge that will allow us to foster a culture of trusted partnership, service, and continuous improvement. 

What you’ll own:

  • Threat Modeling cloud-based web applications and infrastructure for customer-facing and internal dataflows
  • Performing threat hunting against cloud assets
  • Reviewing alerts and providing recommendations from AWS Cloud Security Hub, Azure Security Center, and Google Cloud Security
  • Performing cloud security assessments for Posit applications and internal IT operations
  • Testing and recommending new security tools and techniques to reduce security risks, including, but not limited to, vulnerability scanning, API security testing, benchmarking container security, and SaaS integrations
  • Scripting or otherwise automating tests to detect or prevent new threats to supplement or improve reporting from commercial solutions 

What you’ll help with:

  • Driving the integration and ongoing monitoring of cloud security events into Security workflows and alerting (Slack, Email, SIEM)
  • Responding to cloud security incidents and alerts 
  • Securing the solution delivery pipeline for cloud-based web applications with Engineering teams
  • Reviewing Infrastructure as Code for Terraform, Pulumi, Kubernetes, and Cloud Formation for security vulnerabilities

What you’ll learn:

  • In-depth knowledge of current and future Cloud Infrastructure initiatives across multiple cloud platforms
  • Infrastructure as Code processes and technologies that will test and deliver secure infrastructure
  • New and emerging technologies and techniques for Cloud Security

About you:

  • You have a deep technical understanding of relevant cloud technologies (including, but not limited to) AWS Security & IAM Config, Inspector, Detective, KMS, CloudWatch, Guard Duty, Cloud Trail, ECR, etc.
  • You understand git and shell scripting to automate repetitive tasks, access APIs, etc.
  • You are driven to learn how Posit uses the cloud to deliver value to its customers.
  • You are organized, focused, and driven in how you approach your work.
  • You have a bias for action, delivering solutions to mitigate security risks.
  • You provide value through the knowledge gained and communicated from hands-on analysis and testing. 
  • You look at threats and vulnerabilities as opportunities and evidence to enhance our understanding of the landscape we protect. 
  • You are a highly ethical person who understands that our value hinges on the speed and integrity of the product delivered.
  • You collaborate with stakeholders and independently ensure the accuracy of information delivered in security test results.
  • You have experience meeting timelines and reporting across different business units.

Within 1 month:

  • Meet everyone on the Information Operations team and associated Cloud teams. 
  • Become familiar with Posit security infrastructure and operations and begin executing on existing projects and those planned for the near future.

Within 3 months:

  • Possess a solid understanding of our cloud infrastructure security model and controls. 
  • Present findings enumerate gaps and provide recommendations on improving our security posture.

Working at Posit:

  • We welcome all talented colleagues and are committed to a culture that represents diversity in all its forms.
  • We prioritize giving ourselves “focus time” to get deep work done. We minimize meetings and attempt to operate asynchronously.
  • We are a learning organization and take mentorship and career growth seriously. We hope to learn from you and we anticipate that you will also deepen your skills, influence, and leadership as a result of working at Posit.
  • We operate under a unique sustainable business model: We have over 50% of our engineering dedicated to creating free and open source software.  We are profitable and we plan to be around decades from now.
  • Posit is a Public Benefit Corporation (PBC) and a Certified B Corporation®, which means our open-source mission is codified into our charter. As a result, our corporate decisions balance the community's interests, customers, employees, and shareholders. Hear more about why we think this matters here.

Notable:

We offer competitive compensation with extensive human-first, people-focused benefits to prioritize your personal and financial well-being.

  • 100% of medical, dental, and vision insurance premiums are covered for employees and their families! Fertility and gender-affirming healthcare is included in all of our plans.
  • Supplemental mental health and wellness benefits are available via Ginger even if you don’t opt in to our insurance plans, including Ginger for teen family members.
  • Posit's gender-neutral paid parental leave policy covers all new parents, including foster and adoptive parents.
  • All full-time employees are eligible for 401k enrollment starting on day one.
    • After six months of employment, Posit provides a substantial yearly match to employee 401K contributions.
  • An annual profit-sharing bonus for employees recognizes our team’s contributions to company performance across the year.
  • We are a 100% distributed team. You are also welcome to come into our Boston office. 
    • We offer a $400 monthly reimbursement for coworking space rental if you prefer to work away from home. 
  • Our Lifestyle Savings Account offers an initial deposit of $1800 and then an additional quarterly stipend of $375 to cover the costs of professional development, wellness, financial health, charitable giving, and remote work support.
  • We provide a flexible environment with a generous vacation policy that encourages a minimum of four weeks PTO per year plus 13 paid company holidays.

Are you excited about this role but not sure if your experience aligns with every qualification in the job description? That’s okay. We know multiple perspectives are essential for a thriving organization and we'd still love to hear from you! 

Posit is committed to being a diverse and inclusive workplace. We encourage applicants of different backgrounds, cultures, genders, experiences, abilities, and perspectives to apply. All qualified applicants will receive consideration for employment without regard to race, color, national origin, religion, sexual orientation, gender, gender identity, age, physical disability, or length of time spent unemployed.

#LI-REMOTE

Cyber Security Jobs by Category

Remote jobsFull Time jobsApplication Security jobs

Cyber Security Salaries

Remote SalaryFull Time SalaryApplication Security Salary