Senior Infrastructure and Security Operations Engineer

Senior Infrastructure and Security Operations Engineer

Department: Group IT & Security

Employment Type: Full Time

Location: USA, East Coast (Home based)

Reporting To: Aaron Lee

Description

About us
We are Digital Science and we are advancing the research ecosystem. We are a pioneering technology company, and our vision is of a future where a trusted and collaborative research ecosystem drives progress for all. We believe in better, open, collaborative and inclusive research. In creating the next generation of tools and working in partnership with the community we tackle some of the biggest challenges to research. In order to achieve our vision, we need innovative, inspiring and dynamic people to join our team. Want to join us?

Your new role

As a Senior Infrastructure & Security Operations Engineer, you will be part of our wider Information Security team. Implementing and operating a secure cloud environment and the security controls protecting it. 

This role partners with several areas of Digital Science and adds value through delivering and operating a robust secure hosting environment operating within a compliance framework which meets our ever evolving customer compliance requirements. You will be primarily responsible for the delivery and maintenance of compliant infrastructure specific to large, US (Federal) customers with enhanced security and privacy requirements. 

This role (due to Federal requirements) can only be satisfied by a “US citizen, US national, or US person” and additional checks may be required.

What you’ll be doing

• Work as part of a newly-formed, dedicated Infrastructure & Security Operations team responsible for US Federal customers
• Implement and manage database and application infrastructure within AWS (GovCloud)
• Implement and manage security tooling (e.g. SIEM, DAST)
• Work with the stakeholders from across the group, our customer-base and third-party vendors/partners, to embed and enhance security for products, services and business units under your purview. 
• Implement and manage controls across several frameworks including FedRAMP and DoD IL4 primarily. 
• Identifying and mitigating risks, utilising governance, risk and compliance tooling to map to DS policies and procedures while operating the environment(s) under the role
• Implementing policies and procedures in order to align with DS policies while satisfying the needs of additional frameworks including FedRAMP and DoD IL4
• Monitoring compliance as required to maintain the FedRAMP authority to operate at the appropriate level
• Participating in audits and assessments in advance of the external audits required.

What you’ll bring to the role

• Expertise in implementing and managing Enterprise Security Tooling (e.g. SIEM, DAST)
• You have relevant work experience with AWS services (e.g. ECS, S3, VPC, Route53, RDS, EKS) alongside network and information security.
• You have relevant work experience with application containers and container orchestration technologies (e.g. kubernetes, docker)
• You have used infrastructure as code tools (e.g. terraform and/or cloudformation)
• You have database infrastructure experience with PostgreSQL, Apache Solr and Redshift.
• You have experience setting up and maintaining continuous integration and continuous deployment pipelines at scale and in Production.
• You have operated within a highly regulated/secure compliance environment such as  FedRAMP (to at least ‘moderate’ level) or DoD IL4 with an understanding/experience of NIST-800 (53 and 218 at a minimum).
• You have a good understanding of ISO/IEC 27001 and 27701
• Bachelor degree in Computer Science or a related field, and/or equivalent Information Security related certifications (such as CISSP). 

The extras: 

• Ability to obtain a US Public Trust security clearance.
• AWS/GCP certifications are a plus.
• Security focused certifications are a plus.

Living our Values

We invest in, nurture and support innovative businesses and technologies that make all parts of the research process more open, efficient and effective. 
The talent we secure is fundamental to us achieving our vision and our growth plans. The values we live by are:
We are brave in the pursuit of better We are collaborative and inclusive We are always open-minded We are from and for the community 

We're an equal opportunity employer. All applicants will be considered for employment without attention to race, colour, religion, sex, sexual orientation, gender identity, national origin, veteran or disability status