Platform Security Engineer
| Company | American Financial Group |
|---|---|
| Location | Cincinnati, OH, USA |
| Salary | $Not Provided – $Not Provided |
| Type | Full-Time |
| Degrees | Bachelor’s |
| Experience Level | Senior |
Requirements
- College degree in technology / sciences or equivalent work experience.
- Minimum 5 years’ experience with emphasis on cloud security and system administration.
- Deep understanding of network security best practices, including securely establishing connections to on-prem and cloud resources based on a zero-trust model.
- Hands on experience with network traffic analysis using tools including wireshark, tcpdump, and netflow data.
- An in-depth knowledge of network protocols.
- Proficient with scripting in languages such as Python and PowerShell.
- Proficiency in Wiz.io toolset.
- Strong experience with Kubernetes architecture and security.
- Detailed understanding of interacting with APIs.
- Hands on experience with DevOps tools and practices, including CI/CD pipelines, containerization, and infrastructure as code (IaC).
- Understanding of NIST, OWASP, CIS, CVSS, the MITRE ATT&CK framework and the secure software development lifecycle.
- Experience with operations and security across Amazon Web Services (AWS) Microsoft Azure, and Kubernetes.
- Strong communication skills required.
- Ability to think both strategically and tactically and be recognized as a thought leader within the security group.
Responsibilities
- Develop and maintain secure platform security policies in our Cloud Security Posture Management tool.
- Help develop rich vulnerability and remediation strategies for platform security incidents.
- Protect key infrastructure in compliance with privacy, security, business resiliency, and compliance frameworks as defined.
- Conduct rigorous oversight of security systems and security configuration administration to reduce risk to enterprise systems and accounts.
- Work with key stakeholders to ensure proper best practices are being considered as key platforms are deployed.
- Document, formulate and enforce areas of security improvement that balance risk with business operations and do not diminish efficiencies or innovation.
- Build relationships with infrastructure and development groups to incorporate security principles into engineering design and deployments.
- Develop partnerships with IT production and engineering teams.
- Analyze and implement recommendations for security best practices and improvements to cloud infrastructure.
- Design and implement extensible and maintainable enterprise grade solutions using existing toolsets.
- Develop high-quality technical content including automation tools, reference architectures, and baselines to help our partners build on the work we deliver.
- Attend and fully engage in change and project management meetings.
- Mentor and invest in the development of team members.
- Performs other duties as assigned.
Preferred Qualifications
- CCSK, CCSP, CISSP or equivalent security credential preferred.
- Familiarity with DevOps tools such as Terraform, Nexus Repository Manager, Git/Stash, Jenkins, VMware vRealize Automation (or VCD), Packer, Vagrant, Docker, Sonar.