Cloud Adversary Engineer

Overview

POSITION OVERVIEW

Fidelity National Financial (FNF) is looking for a skilled Cloud Adversary Engineer with extensive knowledge of Active Directory, Entra ID, Azure, and Azure cloud infrastructure to join our Information Security Office (ISO). The ideal candidate will be proficient with Bloodhound Community or Enterprise and related security tools. This role requires a deep understanding of cloud security practices, infrastructure maintenance, and server management to ensure the highest level of security across our cloud environments.

LOCATION

• This role is 100% remote
• Occasional travel may be required to conferences and/or to our HQ in Jacksonville, FL

DUTIES & RESPONSIBILITIES

• Utilize Bloodhound Enterprise to map and analyze Active Directory and cloud infrastructure for potential attack vectors and access misconfigurations
• Work closely with FNF’s Red Team, write and execute Cypher queries to identify and prioritize attack paths beyond those discovered by Bloodhound Enterprise
• Analyze security data to recommend effective remediation strategies
• Provide expert advice and guidance on remediation techniques and best practices
• Assist teams with remediation troubleshooting for findings on request
• Drive burndown of findings across the enterprise
• Create new collector servers for newly discovered domains in the enterprise as needed
• Update collector agents as needed
• Monitor and maintain service availability
• Other duties as assigned

MINIMUM REQUIREMENTS

• Bachelor’s degree in computer science, cybersecurity, or a related field, or the equivalent combination of education, training, and work experience
• Requires 3+ years of experience in various security and technology domains
• Proven experience with Bloodhound and the ability to write Cypher queries
• Experience in modern Azure development and delivery platforms
• Strong knowledge of Active Directory, Entra ID, and Azure cloud infrastructure
• Familiarity with common attack frameworks such as MITRE ATT&CK
• Experience in server management, infrastructure maintenance, and change management processes
• Excellent problem-solving skills and attention to detail
• Strong communication skills to effectively convey complex technical information to non-technical stakeholders

PREFERRED EXPERIENCE

• Experience with Container technologies tooling (Docker, Kubernetes, Helm, etc.)
• Knowledge of scripting and automation for security tasks (e.g., Python, PowerShell)
• Continuous integration and delivery tooling experience (CI/CD)
• Current relevant security certifications (e.g., OSCP, CEH, CISSP)

This position has the potential to earn compensation in the range of $140,000 - $185,000 annually based on location and job-related factors such as skillset and experience. Actual rate may vary within the range provided, depending on a number of factors, including skillset, experience and location.  The base compensation is one component of the total rewards package offered to our employees, including optional health and welfare insurance (medical/dental/vision/life/disability); paid holidays, vacation, and sick time off; and matching 401(k) plan and matching employee stock purchase plan.