Staff Cloud Security Engineer
We're driven by a mission to make digital payments accessible to everyone, everywhere. With our innovative payment solutions, we empower businesses of all sizes to access new markets and connect with more customers. Our clients include some of the world's most innovative companies, such as Ant Group, PayPal, and Stripe, who depend on PPRO to accelerate their growth.Our strength lies in our diverse and global team, spanning various nationalities and international locations. We’re all united by a shared a passion for building – whether that’s trusted relationships with our customers, or next generation products that make payments simpler, faster, and more secure for everyoneAt PPRO, we believe that everyone can make a difference. We encourage our team members to seize opportunities to maximize their impact, adopt a growth mindset, build trust with each other and our customers, and drive change across the industry. We’re just at the start of our journey to become the leading payments technology provider globally – and that’s where you come in.The Purpose:You’ll join a growing team and be responsible for the security of our computer systems & networks. The focus of this role is Cloud Security and Threat Detection.In PPRO, we operate an extensive cloud environment spanning across several AWS accounts and GCP. Your primary focus will be on ensuring the security and integrity of our cloud infrastructure and services with an additional responsibility for proactive threat hunting. You will conduct assessments and analyze risks, design metrics and KPIs to measure our security posture as well as detect, investigate and prevent attacks against our technology systems. The role is highly collaborative, involving frequent interaction with various members of the technology teams.
What will you be doing:
- Risk assessments and architecture reviews of our cloud environments and technology stacks.
- Collaborating with engineering on the design of secure solutions.
- Writing Hardening Standards and Security Guidelines for various technologies and processes.
- Developing automations for recurrent and manual tasks around auditing activities, cloud security posture management (CSPM) and other security processes.
- Threat modelling applications and services and creating detection rules for our SIEM.
- Fostering security leadership and awareness within engineering.
- Supporting the Security Operations Centre (SOC) with event triage and analysis.
Some of the technologies you will get to work with:
- AWS (Kubernetes, ECS, GuardDuty, SecurityHub and more)
- Security tools (Aqua Security, Rapid7, CrowdStrike, Fleet/OSQuery and more)
- DataDog (SIEM)
- Terraform, Terragrunt
- Github Actions
You will need to have:
- *NIX: strong understanding.
- Solid knowledge of computer networks and operating systems.
- Strong background in AWS, with a great understanding of security hotspots, best practices and security related services.
- Experience in responding to incidents / threats within a cloud environment.
- Container security best practices (incl. Kubernetes security).
- Infrastructure as code (preferably Terraform).
- Scripting (Python, bash).
- Excellent English skills in written & spoken.
- Strong interpersonal skills, able to effectively foster security awareness within the company.
Nice-to-haves:
- SIEM experience.
- Experience with the implementation of security gates and hardening controls for CI/CD pipelines (preferably Github actions).
- Experience on Google Cloud Platform (GCP).
- Experience with the Mitre Att&ck framework.