Engineer, IT Security

Enphase Energy is a global energy technology company and leading provider of solar, battery, and electric vehicle charging products. Founded in 2006, Enphase transformed the solar industry with our revolutionary microinverter technology, which turns sunlight into a safe, reliable, resilient, and scalable source of energy to power our lives. Today, the Enphase Energy System helps people make, use, save, and sell their own power. Enphase is also one of the fastest growing and innovative clean energy companies in the world, with approximately 68 million products installed across more than 145 countries.  

We are building teams that are designing, developing, and manufacturing next-generation energy technologies and our work environment is fast-paced, fun and full of exciting new projects.  

If you are passionate about advancing a more sustainable future, this is the perfect time to join Enphase!  

About the role

Looking for an ideal candidate will be responsible for all Security tools used at our company (in Cloud and On-Prem). This role requires a deep understanding of AWS services, DevOps practices, Network Security and security methodologies.

What you will do

Automation and Continuous Security: Build and manage Infrastructure-as-Code (IaC) scripts using tools like AWS CloudFormation and Terraform to automate secure infrastructure deployment.

• Provide secured, scalable and reliable solutions to business in cloud which meets company’s standards.
• Manage AWS WAF, Cloud Firewalls, and other cloud infrastructure services.

Network Security:

• Implement security controls and processes on office networks.
• Implement/Enhance Security controls on Firewalls, NAC and Web-Proxy to provide secured access to Enphase users.
• Maintain daily operations to support corporate users from network and security perspective.

Cloud Security Design & Management:

• Design and maintain secure AWS infrastructure using best practices such as least privilege, IAM, and encryption.
• Leverage AWS security services (e.g., VPC Flow Logs, GuardDuty, IAM, and CloudTrail) to monitor and secure cloud environments.
• Implement and manage security measures like firewalls, VPNs, and intrusion detection/prevention systems.
• Automate security tasks by integrating security tools into CI/CD pipelines for continuous security testing and remediation (e.g., AWS CodePipeline, Jenkins).

Who you are and what you bring

• Bachelor’s degree in computer science, Information Security, or a related field (or equivalent work experience).
• Experience:  5+ years of experience in a DevSecOps, cloud security, or related role.
• Hands-on experience with AWS security services such as IAM, Security Hub, GuardDuty, WAF, and CloudTrail.
• Experience with DevOps tools (e.g., Jenkins, GitLab, Docker, K8s) and Infrastructure-as-Code (IaC) tools (e.g., Terraform, AWS CloudFormation).
• Experience with integrating security into CI/CD pipelines.

• Hand-on experience on Palo Alto Networks firewalls, Forescout NAC, Zscaler Web-Proxy, Proofpoint Email Gateway.

Certifications (preferred but not mandatory):

• AWS Certified DevOps Engineer – Professional
• Certified Information Systems Security Professional (CISSP)
• Certified Cloud Security Professional (CCSP)
• ForeScout Certified Engineer/Administrator(FSCE/FSCA)
• Palo Alto Network Certified Engineer(PCNSE)
• Zscaler Certified Administrator (ZSCA)

Soft Skills:

• Excellent communication and teamwork skills, with the ability to collaborate with cross-functional teams.
• Strong organizational skills and the ability to manage multiple priorities in a fast-paced environment.
• A passion for staying current with emerging DevSecOps trends and technologies.