Cloud Security Engineer

🕒 il y a 1 mois

🇺🇸 États-Unis – Télétravail

💵 $145 491 - $187 900 / an

⏰ Temps Plein

🟡 Intermédiaire

🟠 Senior

👮‍♂️ Cybersécurité / Ingénieur Sécurité

🦅 Parrain de Visa H1B

Cette entreprise a parrainé des visas H1B par le passé.

Postuler Maintenant

Trouver des Emplois à Distance Similaires

Recevoir des emails pour des emplois à distance

📊 Vérifiez votre score de CV pour ce poste

Améliorez vos chances d'obtenir un entretien en vérifiant votre score de CV avant de postuler.

Télécharger le CV

Virta Health

Site WebLinkedInTous les Emplois

201 - 500 employés

⚕️ Assurance santé

🧘 Bien-être

Healthcare Insurance • Wellness • Health Tech

Virta Health est une entreprise de santé spécialisée dans l'inversion du diabète de type 2 et la promotion d'une perte de poids durable grâce à une approche axée sur la nutrition. L'entreprise propose des plans de traitement personnalisés qui aident les individus à réduire ou à éliminer le besoin de médicaments contre le diabète. Virta collabore avec des organisations et des prestataires de soins de santé pour offrir des résultats transformateurs dans le domaine des soins métaboliques. Leur approche est fondée sur des preuves, soulignant l'importance des changements de mode de vie et alimentaires pour atteindre des améliorations durables en matière de santé et de gestion du poids.

Description

• Own and Enhance Security Design: Assess our current security controls within GCP and Kubernetes, identify areas for improvement, and drive the maturation of our security posture from good to great. • Champion Secure Development: Partner closely with Engineering, Product, and Platform teams to integrate security best practices early and often ("shift-left") into the software development lifecycle. • Build and Automate: Design, implement, and manage security tooling and automation to streamline vulnerability detection, remediation, and compliance verification. Replace manual processes with efficient, automated solutions. • Refine Access Control: Evolve our identity and access management (IAM) strategy, ensuring least-privilege access and robust auditing capabilities across our systems. • Strengthen Network Security: Continuously improve our network security architecture, policies, and controls within our cloud environment. • Develop Clear Standards: Establish, document, and communicate practical security policies, standards, and guidelines for engineering teams. • Lead Security Initiatives: Drive vulnerability management efforts and enhance our incident response preparedness, ensuring we are ready to handle potential threats effectively. • Cultivate Security Awareness: Act as a security evangelist, promoting security awareness and best practices throughout the engineering organization.

🎯 Exigences

• Understanding and practical experience in securing cloud-native applications and infrastructure, particularly in Kubernetes environments. GCP experience is strongly preferred. • Strong grasp of networking concepts, identity management (IAM), encryption, and common web application vulnerabilities (e.g., OWASP Top 10). • Excellent communication skills with the ability to clearly articulate complex security concepts to diverse audiences and influence technical direction across teams. • Significant hands-on experience in application security, including threat modeling, secure coding practices, vulnerability management, and security testing (SAST, DAST, IAST). • Proficiency in Infrastructure as Code (IaC) tools, specifically Terraform. • Development experience with Go and Python.

🏖️ Avantages

• Offers Equity