Senior DevSecOps Engineer

Job Overview

We are seeking a highly skilled and motivated Senior DevSecOps Engineer to join our cybersecurity team to focus on cloud security in a very dynamic "DevSecOps" environment. In this role you will be primarily responsible for the security of all cloud services implementations. This is both an architecture/design and engineering role, but also a very technical hands-on role.

In this role you will provide strong security designs and engineering workflows for new services, establishing control automations through code development and pipeline executions, as well as integrations with cybersecurity cross-platform tooling and solutions. This role will provide continued diligence and efforts in enhancing our overall cloud security posture and response capabilities within our evolving and ever-changing cloud ecosystems.

The ideal candidate will have a strong background in AWS cloud security and an in-depth understanding of many common native AWS security services and controls, adept at building integrations with common AWS services through API frameworks.

This role will engineer enhanced cybersecurity controls and visibility into many aspects of our of business models within these cloud environments. Coding experience through python is a must.

Responsibilities:

• Subject matter expert in all aspects of cloud security.

• Drive, implement, contribute and support/operate AWS cloud cybersecurity strategy for Arrowstreet.

• Leveraging automations; design, drive, deliver and operate cybersecurity controls necessary for each new cloud services that will be deployed within our cloud tenants.

• Continuous assessment of our cybersecurity risk posture and implement/operate necessary improvements.

• Collaborative approach with network engineering, systems engineering and cloud engineering teams to integrate security with AWS cloud designs, initiatives and controls and other platforms or workflows that ultimately support cloud workloads.

• Provides exceptional AWS cybersecurity expertise at a very technical level focused on design, engineering and operational support towards the successful delivery of services.

• Participate in deep cloud architectural discussions and drive topics, directions and problem-solving outcomes to ensure solutions are designed for successful security controls and visibility.

• Build and maintain effective partnerships with key cross functional leaders and team members – transversal leadership and ability to federate is key for this team position.

• Educate and coach project team members, sponsors, and functional leaders on cloud cybersecurity aspects and outcomes, influence change/direction as needed.

• Facilitate and advance high level strategic decision making through detailed analysis and technical justifications.

• Recommend new or provide enhancements of existing cybersecurity tooling and services within cloud environments.

• Provide training and mentoring to internal staff to assist in the operational effectiveness of cloud security.

• Partake in a team rotation of CSIRT responsibilities.

Qualifications:

• Proven record of similar experience of securing AWS cloud tenants using both cloud native, open source and commercial based security solutions.

• Strong experience with these AWS Security tools/concepts: SCP, KMS, GuardDuty, SecurityHub, IAM and Condition, VPCE and VPCE policies, Macie, Inspector.

• Strong CloudFormation and Python knowledge with Boto3 library and others.

• Experience with securing Containers, Kubernetes stacks, Pipelines (SDLC).

• Experience with endpoint detection and response implementations.

• Experience with runtime detection and prevention capabilities.

• Experience with vulnerability management for cloud workloads and how to operate them.

• Passion for technology, a willingness to learn new skills and the ability to evangelize

• Self-motivated and self-directed, ability to translate technical direction into functional solutions

• Ability to work effectively, managing multiple priorities while collaborating with cross-functional teams

• Proven ability to investigate complex issues spanning multiple technologies and drive to completion

• Understanding of micro-system environments is an added plus; EKS, ECS etc.

• Terraform or similar framework automation is an added plus.

• Routing and switching / networking experience is an added plus.

• Strong analytical and problem-solving skills with a keen attention to detail.

• Excellent communication and interpersonal skills to work effectively with stakeholders.

Arrowstreet Capital is a Boston-based systematic investment firm that manages global equity portfolios for institutional investors around the world. 

Arrowstreet Capital is an equal opportunity employment firm.  All qualified applicants will receive consideration for employment without regard to sex, race, color, religion, national origin, ancestry, gender identity, genetic information, age, sexual orientation, pregnancy, medical condition, disability, veteran or military status, marital status or any other characteristic protected by federal, state, or local law.

Arrowstreet Capital is committed to working with and providing reasonable accommodations for qualified individuals with disabilities and disabled veterans. If you need a reasonable accommodation for any part of the employment process due to a disability, contact us to discuss the nature of your request and contact information.