DevOps Security Engineer

🕒 il y a 3 mois

Postuler Maintenant

Trouver des Emplois à Distance Similaires

Recevoir des emails pour des emplois à distance

📊 Vérifiez votre score de CV pour ce poste

Améliorez vos chances d'obtenir un entretien en vérifiant votre score de CV avant de postuler.

Télécharger le CV

Knox Systems, Inc.

Site WebLinkedInTous les Emplois

201 - 500 employés

🏛️ Gouvernement

🔒 Cybersecurity

📋 Conformité

🔥 Financement dans la dernière année

💰 €6 500 000 Seed en 2025-08

Government • Cybersecurity • Compliance

Knox Systems, Inc. est l'opérateur du plus grand cloud géré autorisé par FedRAMP, offrant une infrastructure cloud conçue pour répondre aux besoins spécifiques des agences fédérales américaines et des fournisseurs SaaS à destination du gouvernement. Knox propose un hébergement multi-cloud sur AWS, Azure et GCP, une automatisation de la conformité alimentée par l'IA (KnoxAI), une surveillance et une remédiation en temps réel, et un chemin simplifié vers l'autorisation FedRAMP qui compressent les délais traditionnels de plusieurs années à quelques semaines. L'entreprise se concentre sur des environnements sécurisés, résilients et audités permettant un déploiement rapide et conforme des solutions SaaS et IA dans le secteur public.

Description

• Serve as a security point of contact for external customers deploying into regulated cloud environments. • Support customer onboarding by validating application security posture and deployment readiness for FedRAMP environments. • Review customer security documentation, architectures, and deployment workflows against platform security requirements. • Communicate security requirements, changes, incident escalations, and compliance questions clearly to customers. • Implement and operate security controls required for FedRAMP Moderate/High, aligned to NIST SP 800-53. • Support Continuous Monitoring (ConMon) activities, including vulnerability tracking, POA&M updates, and compliance reporting. • Maintain and validate FedRAMP security architecture artifacts, including network diagrams, data flow diagrams, trust boundaries, and control flows. • Validate deployed infrastructure and traffic patterns against approved FedRAMP architectures using flow logs and telemetry. • Operate CrowdStrike as part of the core CNAPP enforcement and DevSecOps control. • Integrate CrowdStrike CNAPP and detection signals into automated SOAR and CI/CD workflows to support preventative controls, response, and Continuous Monitoring (ConMon) for FedRAMP compliance. • Coordinate external penetration testing efforts, including scoping, access, findings review, and remediation tracking. • Use application security tools (e.g., Burp Suite) to support internal testing and remediation. • Implement security and compliance gates in CI/CD pipelines to prevent non-compliant infrastructure or code from reaching production. • Enforce policy-as-code guardrails for IAM, networking, logging, encryption, and endpoint protection using Terraform. • Ensure CrowdStrike coverage, logging, and monitoring are enforced as deployment prerequisites. • Prevent cloud exposure by enforcing network segmentation, approved ingress/egress paths, and least-privilege access. • Detect and remediate configuration drift using CSPM and automated workflows. • Secure Kubernetes clusters and containerized workloads to approved security baselines.

🎯 Exigences

• 4+ years of experience in Cloud Security, DevSecOps, or Security Operations roles. • Hands-on experience operating CrowdStrike Falcon in production environments. • Direct experience supporting FedRAMP environments and implementing NIST SP 800-53 controls. • Experience working directly with external customers on security onboarding or deployment readiness. • Strong experience with Wiz or similar CSPM/CNAPP platforms. • Proficiency with Terraform and CI/CD tooling (GitHub, GitHub Actions). • Experience securing multi-cloud environments (AWS required; Azure and/or GCP preferred). • Strong written and verbal communication skills.

🏖️ Avantages

• Medical • Dental • Vision • Life & Disability • Unlimited PTO • Employee funded 401k plan