Cloud Security Engineer

At Lendbuzz, we believe financial opportunity should be more personalized and fair. We develop innovative technologies that provide underserved and overlooked borrowers with better access to credit. From our employees to our dealers, partners, and borrowers, we’ve built a company and a culture around a resolute belief in the promise and power of diversity. We value independent and critical thinking.
As a Cloud Security Engineer you will have the opportunity to lead the protection, guidance, designing, automation and support of Lendbuzz’s cloud security. You will also contribute to other security domains and initiatives such as Incident Response, Security Monitoring and Risk Management. You will partner with RnD, DevOps, IT and other groups to protect Lendbuzz’s highly scalable cloud infrastructure.

Responsibilities

• Provide technical expertise on cloud security and securing data within the cloud
• Manage and provide guidance on Identity, access, secrets and patch management
• Implement and operate security tools 
• Provide technical expertise on securing data within the cloud
• Respond to security incidents and investigations
• Evaluate security events and alerts within the cloud protection platform
• Build processes to effectively manage risks across all cloud environments and collaborate with the risk owners to remediate
• Create and deliver cloud training to R&D teams

Requirements

• At least 3 years of experience with designing and securing cloud architectures (AWS)
• Bsc in computer science
• Related certifications in Cloud Security/AWS/DevOps
• Proven working experience of CI/CD and development pipeline technologies
• Experience with IaC
• At least 3 years of experience with containerized environments and microservices, and in particular with container security and secrets management (Docker/Kubernetes).
• Hands-on experience with promoting automations in a large scale cloud environment
• Experience writing scripts in python (or other programming languages)
• Proven knowledge of core security networking concepts like TLS, SSH, DNS, Firewalls etc.
• Knowledge of microservice architecture, web technologies and APIs
• Good presentation skills: Ability to articulate technically advanced issues to all audiences; Ability to mentor and train internal staff
• Solid knowledge of information security principles and practices
• Ability to effectively prioritize and execute tasks
• Excellent interpersonal and effective people leadership skills
• Excellent English communication skills (both speaking and writing)

What we offer:- A culture that values product ownership, collaborative architectural planning, and building wins for your resume/portfolio as much as for the company.- Smart, dynamic people with whom you can share the experience of building something unique.- Competitive salary with opportunities for growth and advancement.