Senior Security Engineer

🕒 vor 1 Monat

Jetzt Bewerben

Ähnliche Remote-Jobs finden

E-Mails für Remote-Jobs erhalten

📊 Überprüfen Sie Ihre Lebenslauf-Bewertung für diese Stelle

Verbessern Sie Ihre Chancen auf ein Vorstellungsgespräch, indem Sie Ihre Lebenslauf-Bewertung vor der Bewerbung überprüfen.

Lebenslauf hochladen

iHerb, LLC

WebsiteLinkedInAlle Stellen

1001 - 5000 Mitarbeiter

Gegründet 1996

🛍️ eCommerce

🧘 Wellness

🛒 Einzelhandel

eCommerce • Wellness • Retail

iHerb, LLC ist eine E-Commerce-Plattform, die sich auf Gesundheits- und Wellnessprodukte spezialisiert hat. Das Unternehmen bietet eine breite Palette von Produkten, darunter Vitamine, Nahrungsergänzungsmittel, Heilkräuter, Sportnahrung, Schönheitsprodukte, Lebensmittel und mehr. iHerb hat sich der Bereitstellung von hochwertigen Produkten verschrieben, die direkt von Herstellern oder autorisierten Distributoren bezogen werden. Die Plattform ist bekannt für ihre wettbewerbsfähigen Preise, umfangreiche Produktbewertungen, pünktliche Lieferdienste und ein starkes Augenmerk auf Kundenzufriedenheit. iHerb bedient eine internationale Kundschaft und bietet Versand in zahlreiche Länder weltweit an.

Beschreibung

• Design, develop, and maintain automation frameworks and scripts (Python, Bash, Terraform) to streamline security processes and workflows. • Deploy and manage secure, scalable infrastructure on AWS using Terraform via Scalr and Harness, with additional presence in GCP and Azure. • Build, support, and optimize AWS Step Functions, Lambda, and EventBridge workflows from a centralized tooling account that operates across multiple spoke accounts in the AWS Organization. • Maintain Kubernetes clusters using Helm charts, including in-house security automations on pods that integrate with CSPM tools and Jira ticketing processes. • Develop and enforce cloud security guardrails using OPA, Guardrails, Service Control Policies (SCPs), IaC security gates, and tag policies. • Architect, build, and maintain Splunk Enterprise Security (ES) integrations, including onboarding log sources, managing indexes, tuning correlation searches, and configuring automated response actions. • Design and implement Splunk SOAR playbooks to automate security tasks, reduce Mean Time to Respond (MTTR), and scale SOC capabilities. • Serve as the subject matter expert for Okta Identity Engine (OIE) — building and managing scalable SSO policies, modern authentication (SAML/OIDC), and identity lifecycle processes. • Leverage AWS security services (GuardDuty, Macie, IAM, Control Tower, KMS, CloudTrail, EventBridge) to build event-driven automations for threat detection and response. • Own the in-house Jira management process for CSPM findings and the supporting data pipeline that feeds AWS QuickSight dashboards. • Collaborate with cross-functional teams (Dev, Platform, Security, and SOC) to integrate security automation into CI/CD pipelines and shift security left. • Conduct risk assessments, enforce security best practices, and continuously improve our defensive posture through automation and tooling. • Monitor, troubleshoot, and optimize cloud infrastructure and security systems to ensure high availability, performance, and compliance. • Stay current with AWS best practices, security trends, and emerging technologies to drive continuous improvement.

🎯 Anforderungen

• 10+ years of experience. • Strong hands-on experience with: • Terraform, Kubernetes (EKS + Helm), Docker, and scripting in Python & Bash • AWS services including Step Functions, Lambda, EventBridge, GuardDuty, Macie, IAM, Organizations, and QuickSight • Policy-as-code tools (OPA, Guardrails, SCPs) and IaC security scanning • Splunk Enterprise Security (ES) administration, log onboarding, correlation search tuning, and automated responses • Splunk SOAR playbook development and automation • Okta Identity Engine (OIE), SSO, SAML, and OIDC protocols • Proven ability to work independently with minimal supervision while collaborating effectively with cross-functional teams and providing technical guidance. • Experience designing automation solutions that reduce MTTD and MTTR. • Solid understanding of cloud security principles, compliance frameworks, and secure infrastructure design.

🏖️ Vorteile

• Employees (and their families) that meet eligibility criteria as outlined in applicable plan documents are eligible to participate in our medical, dental, vision, and basic life insurance programs and may enroll in our company’s 401(k) plan. • Employees will also be eligible for Time Off and Paid Sick Leave pursuant to the company’s policies. • Employees will enjoy paid holidays throughout the calendar year. • Hired applicant may be awarded Restrict Stock Units and receive annual bonuses pursuant to eligibility and performance criteria defined in the respective plan documents and policies.