Cloud Security Engineer

Who we are:Field Nation brings companies and service professionals together through an integrated, easy-to-use platform. We support businesses looking to grow their service offerings while also empowering technicians to leverage their skills on their own terms. Our mission is to help the service delivery industry do great work, and we live that mission by doing great work for the companies and service professionals that depend on us.
Why is this role important to Field Nation? You'll be at the forefront of securing our cloud-native environment, primarily within Amazon Web Services (AWS), with a strong focus on integrating security into development workflows (DevSecOps) and building robust security capabilities. This is an exciting opportunity to make a real impact in a fast-paced, high-growth environment where innovation and collaboration are encouraged.
Our customers trust Field Nation for their most critical business operations, and we're committed to providing a secure and reliable platform. Our Information Security team is dedicated to safeguarding our systems and data against emerging cyber threats. Your work will directly protect our platform and our customers, ensuring we continue to deliver exceptional value in a secure environment.
This position is located in Minneapolis, MN and reports to the Director of Information Security. 

What you'll get to do:

• Innovate & Automate Security: Lead efforts to identify opportunities for automation, designing and building new security capabilities and tools that streamline our operations and enhance our defensive posture. You'll leverage a robust suite of Generative AI tools to accelerate these initiatives.
• Build and Secure Cloud Infrastructure: Design, build, and maintain secure, scalable, and automated AWS cloud infrastructure, ensuring it meets industry best practices. This includes using Infrastructure-as-Code (IaC) tools like Terraform to embed security from day one.
• Integrate Security into IaC DevOps Pipelines: Lead integration of security practices into our DevOps pipelines, ensuring strong security controls are present throughout the entire development lifecycle, especially for IaC management.
• Manage Cloud Access: Optimize AWS Identity and Access Management (IAM) to enforce the principle of least privilege, ensuring secure access to all cloud resources. 
• Implement Network Security: Design and implement secure network configurations within AWS, including Virtual Private Clouds (VPCs) and security groups. You'll also help administer and maintain network security solutions like our secure web gateway and zero trust network access.
• Support Incident Response: Assist in responding to cybersecurity alerts and incidents, focusing on rapid detection, analysis, containment, and recovery.
• Be a Security Advocate: Serve as a security advocate and educator within our broader engineering organization.
• Stay Ahead of Threats: Keep up-to-date on emerging threats and attack vectors to continuously enhance our defenses.

You might be a good fit if you have:

• Education: Bachelor’s Degree in Cybersecurity, Information Technology, Computer Science, or a related field, or equivalent practical experience.
• Experience: A minimum of 3 years of hands-on experience securing cloud infrastructure, specifically AWS, in a production environment.
• AWS Security Expertise: A strong understanding of core AWS security services and architecture (e.g., IAM, GuardDuty, CloudTrail, Firewall, Security Hub).
• Infrastructure as Code (IaC): Solid practical experience with Terraform for building and maintaining secure cloud infrastructure, ideally with 3+ years of experience.
• Container Security: Demonstrated proficiency with Kubernetes security (including cluster hardening, role-based access control (RBAC), network policies, and container vulnerability management) and familiarity with Docker.
• DevOps & CI/CD Security: Experience with CI/CD tools such as GitHub Actions, Harness, or AWS Code Pipeline, coupled with a solid understanding of secure software development lifecycle practices and DevSecOps methodologies.
• Scripting & Automation: Proficiency in scripting languages like Python, Bash, or PowerShell for automating security tasks and deployments. Familiarity with AWS Lambda or common Security Automation Orchestration and Response (SOAR) solutions.
• Security Tools & Practices: Experience with security tools and practices including vulnerability scanning, threat modeling, and penetration testing. Familiarity with key AWS security services such as IAM, GuardDuty, Security Hub, CloudTrail, and WAF is also important.
• Incident Response: Proven experience with incident response, forensics, and root cause analysis.
• Networking Fundamentals: Strong understanding of cloud networking principles and security controls (e.g., VPCs, Transit Gateway, Security Groups, Firewall & WAF rules).
• Networking Fundamentals: Strong understanding of cloud networking principles and security controls (e.g., VPCs, Transit Gateway, Security Groups, Firewall & WAF rules).
• Networking Fundamentals: Strong understanding of cloud networking principles and security controls (e.g., VPCs, Transit Gateway, Security Groups, Firewall & WAF rules).
• Security Frameworks: Knowledge of common security frameworks and standards, such as ISO 27001 and CIS.
• Problem-Solving & Communication: Excellent problem-solving, analytical, and communication skills, with the ability to explain technical details to non-technical stakeholders.
• Autonomy & Collaboration: Ability to work independently and collaboratively in a high-autonomy environment, taking ownership of initiatives.
• Influence & Advocacy: A strong ability to influence security practices across multiple teams and organizations.
• Proactive Mindset: A proactive mindset with a strong bias for action and continuous improvement.

Why we think you'll love it here:

• Unlimited paid time off
• Annual vacation bonus - yes, we’ll pay you a bonus to take paid time off!
• Individualized growth + development plans
• Strong values around work/life balance
• Community involvement opportunities
• Competitive benefits: medical, dental, vision, paid parental leave + 401K
• Exposure to cutting-edge technologies to solve meaningful problems

Come as you are:At Field Nation, we believe work is about more than checking the right boxes.  If you don’t meet 100% of the requirements for this role, but still feel you’d be a good fit, we want to hear from you!  We review all applications and may even have another open position where you are the perfect fit.
Employment is contingent on passing a pre-employment background check. Your written consent will be obtained prior to a background check being performed.