Security Engineer, Data Center Security
OpenAI- Full Time
- Mid-level (3 to 4 years), Senior (5 to 8 years)
Candidates should possess a Bachelor’s degree in computer science or a related field, and a minimum of 8 to 10 years of experience in cloud security, particularly within AWS and Azure environments. Strong expertise in Infrastructure as Code (IAC) using Terraform and Helm Charts is required, along with familiarity with Kubernetes clusters (EKS and AKS) and containerized deployments. Knowledge of security tools such as Trivy, kube-hunter, Aqua, and Falco is also necessary, as is the ability to develop custom scripts and tools to enhance testing capabilities.
The Senior Cloud Security Engineer will conduct in-depth penetration testing of cloud infrastructure, deployment models, and cloud-native services on AWS and Azure, perform security assessments and penetration testing on Kubernetes clusters, identify and exploit vulnerabilities, analyze and prioritize risks, prepare comprehensive reports, and communicate findings to stakeholders. They will collaborate with Cloud Ops, DevOps, and Cloud Engineering teams to remediate vulnerabilities, participate in threat modelling exercises, ensure adherence to industry standards and compliance frameworks, develop remediation strategies, mentor junior testers, and automate repetitive tasks to streamline penetration testing workflows.
Cloud-based identity security and access governance
Saviynt provides a cloud-based platform focused on identity security and access governance for businesses. Its services include identity governance and administration, third-party access governance, and cloud privileged access management, all aimed at helping organizations manage and secure digital identities, including those of employees and vendors. The platform features automated workflows and tools that simplify identity lifecycle management, while offering visibility and analytics to help businesses stay audit-ready and reduce identity-related risks. Unlike many competitors, Saviynt emphasizes user-friendliness and ease of implementation, making it accessible for a wide range of clients from small businesses to large enterprises. The company's goal is to protect major brands and support their cloud and security initiatives through a subscription-based model that ensures ongoing revenue and investment in product development.