Senior Security Engineer

Senior Systems Security Engineer

We are seeking an experienced Senior Linux Systems Security Engineer to oversee our cloud and on-premise infrastructure security, system updates, and certificate management. The ideal candidate will have extensive experience with Linux systems administration, security protocols, and automation. You will collaborate with cross-functional teams to deliver seamless solutions that meet the needs of our business, including product support for various Doxim products hosted on these platforms. We are passionate about our solutions, our people, and what we bring to the market, and we are looking for candidates who share this vision and have a keen appetite to be involved in what we are doing across multiple industries, delivering challenging cutting-edge solutions.

Responsibilities

We are looking for skilled and experienced Operations Analyst who will be responsible for:

· Manage and maintain security updates across multiple Linux distributions, with particular focus on Amazon Linux 2023

· Oversee package management and updates for critical infrastructure components including GitLab, MySQL, NGINX, and Wazuh

· Implement and maintain email security protocols including DNS, DKIM, and SPF configurations

· Manage enterprise-wide certificate lifecycle including automated deployment using various certificate authorities and management systems

· Design and implement Zero-Trust architecture and VPN solutions

· Develop and maintain custom RPM repositories and packages

· Create and maintain automation scripts using Bash and PowerShell

· Perform security audits and implement remediation measures

· Designing, deploying, and maintaining cloud infrastructure on AWS and Azure platforms.

· Collaborating with architecture and development teams to ensure cloud solutions align with business requirements..

· Monitoring and optimizing cloud resources to ensure performance, security, and cost-efficiency.

· Implementing and managing DevOps practices, including CI/CD pipelines and automation.

· Staying up-to-date with industry trends and emerging technologies to recommend enhancements to the cloud infrastructure.

Qualification / Experience Requirements:

· Bachelor's degree in computer science, Engineering, or a related field (or equivalent work experience).

· Strong proficiency in DNS management, Cloudflare, Gitlabs and certificate management and deployment.

· Strong proficiency in Linux system administration and troubleshooting (Minimum 7 Years).

· Extensive experience with package management systems (RPM, YUM, DNF)

· Experience in implementing and managing DevOps practices and tools.

· Solid understanding of networking concepts and protocols.

· Strong knowledge of email security protocols and implementations.

· Advanced scripting abilities in Bash, Python and PowerShell.

· Experience building and maintaining custom RPM packages

· Strong communication skills to interact with both technical and non-technical stakeholders.

· Deep understanding of Zero-Trust security principles and VPN technologies

Preferred Qualifications

· Experience with containerization technologies (Docker, Kubernetes).

· Familiarity with infrastructure as code (IaC) tools like Terraform, Ansible, or CloudFormation.

· Knowledge of database administration (MsSQL, MySQL) is a plus.

· Strong knowledge of Cloud Infrastructure resources (AWS/Azure)

Knowledge:

· Proven knowledge of networking concepts is essential (e.g., TCP/IP, DNS, DHCP, Subnets, Routing, and Firewalls).

· Experience in implementing 24/7/365 monitoring and detection with alerts (e.g. uptime, utilization, resources, workloads, and optimization). Use of CloudWatch, Graylog, Zabbix or other tools is essential.

· Experience in deploying and implementing various Cloud or Open Source-based tools to support your operational requirements.

· Experience in implementing Security best practice, such as IAM and roles, Public Clouds vs Private Zones, Least Privileges, Segregation of Duties, and Change Control, etc.

· Proven experience implementing CI/CD techniques (Octopus Deploy, TeamCity, Atlassian Pipelines, Jenkins, etc.).

· Beneficial experience in promoting and architecting Serverless workloads (e.g. Lambda, API Gateway, etc.) is highly beneficial.

· Experience in Docker and Kubernetes is beneficial.

· Experience in migrating on-premises workloads to cloud or hosted-based environments; specifically, Windows and Database (MSSQL, PostgreSQL, or MySQL) is beneficial.

· Experience in orchestration (Terraform, CloudFormation) is beneficial.

Attributes:

Communication skills:

· Ability to interact effectively with stakeholders, architects, or solve technical challenges and issues.

· Provide prompt and accurate feedback to relevant stakeholders.

· Communicate effectively with managers, developers, and other stakeholders.

· Escalate unresolved issues to appropriate internal teams and senior stakeholders.

· Experience mentoring junior team members.

Ownership:

· Establish standards or best practices for Cloud Deployments, Configuration, etc.

· Take ownership of issues reported and see problems through to resolution.

· Prioritize and manage several open issues to closure.

· Track issues through to resolution, within agreed time limits or commitments.

· Make use of internal tools for task management (Experience with ITSM and/or Atlassian suite advantageous).

· Document and update the technical knowledge base, driving a learning culture and equipping the broader team for success.