Senior Security Operations Engineer at Zuora
San Diego, CA, US
Hello world! We’re Zuora
We are a SaaS company and the world’s foremost evangelist of the Subscription Economy®. Zuora’s leading subscription relationship management platform helps enable businesses in any industry to launch or shift products to subscription, implement new pay-as-you-go pricing and packaging models, gain new insights into subscriber behavior, open new revenue streams, and disrupt market segments to gain competitive advantage. Zuora serves more than 800 companies around the world in every industry. The Subscription Economy Index (SEI) demonstrates that SEI companies are growing revenues approximately nine times faster than the S&P 500. Headquartered in Silicon Valley, Zuora also operates offices in Atlanta, Boston, Denver, San Francisco, London, Paris, Beijing, Sydney and Tokyo.
Zuora is looking for Senior Security Engineer to join our infrastructure security program to build and manage rapidly growing infrastructure. As Senior Security Operations Engineer you will have the opportunity to develop your analytical, strategic, and technical skills needed around cloud security foundation.
Run key security operations functions for Zuora’s Cloud Infrastructure: Vulnerability Management, Security Incident Management, Security Incident Response etc.
Audit, Detect and Remediate critical Security exposures in AWS Cloud Infrastructure
Identify new security threats by conducting continuous monitoring, penetration testing, vulnerability assessments and log analysis
Audit and detect highly permissive IAM policies to enforce least privilege access for users and services.
Implement simple automations for Security tasks like audit, metrics collection, reporting etc.
Implementing automation around security control enforcements using AWSConfig, Lambda, CloudFormation etc.
Provide technical leadership, solution design, and hands on support for consistent security controls for cloud infrastructure and microservices.
Collaborate cross-functionally and engage with all levels of leadership to gather requirements, build appropriate cloud security technology roadmaps and implementation plans.
Maintain strong awareness of events in the external community to identify threats and opportunities for enhancement.
Evaluate, test, implement and support third party security tools
Required Experience and Skills:
Education & Essential Experience:
MS or Bachelor in Computer Science or equivalent desired
2-5 years with AWS/Public Cloud
10+ Years with security engineering, system and/or network security
Experience in any scripting language like: Python, Perl, Shell etc.
Experience in CI, CD Tools is a plus
Security Controls & Tools for AWS Public Cloud Services
IT Security Frameworks like CIS, NIST etc.
Authentication, Security firewalls & other security protocols.
Vulnerability Management, network penetration testing & remediation techniques
Programming and Ops Skills:
Deep knowledge of AWS Services and respective Security controls
Deep knowledge of AWS API and CLI for various AWS Services
Experience in one or more cloud security monitoring tools: Alert Logic, Threat Stack, Evident.io, Dome9, Cavirin
Experience of using cloud log analyzer or SIEM like Sumologic, Splunk, Elk
Basic Scripting experience in one or more platforms: Python, Bash, Perl
Linux & Network Administration fundamentals
Nice to have: AWS Cloudformation, Ansible, Puppet is a plus
Nice to have: Docker, AWS EC2 Container Service (ECS)
Self-starter, Customer Centric Attitude
High Collaboration and Influence Skills
Willingness to mentor other members within internal or external team
Ability to communicate technical concepts and complexity to all audiences
Tolerant of Ambiguity and Changing Environment