Principal Cloud Security Engineer at Astra

San Ramon, California, United States

Apply Now

Not SpecifiedCompensation

Senior (5 to 8 years), Expert & Leadership (9+ years)Experience Level

Full TimeJob Type

UnknownVisa

Cybersecurity, Cloud ComputingIndustries

Requirements

Recent 5+ years of experience in IT focused on DevSecOps, DevOps or Security Engineering roles
Recent 3+ years of shell scripting, aws-cli, python, lambda
Recent 1+ years of Terraform deployments and Terraform templates (Infrastructure as Code)
Knowledge of and experience with CI/CD technologies
Knowledge of and experience with continuous security practices
Knowledge of infrastructure automation and infrastructure as code
Demonstrated ability to integrate security practices into AWS & AZURE applications
Proficiency in data protection techniques such as encryption, tokenization, and access controls
Bachelor’s degree in computer science, Information Security, or a related field
(Desired) Experience with Salesforce, SAP, and MuleSoft architecture, development, and administration with a focus on platform security (e.g., profiles, roles, permissions, encryption)
(Desired) Excellent Communication Skills: Ability to clearly articulate security concepts to diverse audiences, including engineers, product managers, and executives
(Desired) Collaboration & Influence: Proven ability to work cross-functionally with teams to align on security priorities and influence roadmaps
(Desired) Relevant certifications in Cybersecurity – SSCP, CISSP, CISM preferred
(Desired) AWS certifications (e.g., AWS Certified Solutions Architect or AWS Certified Security Specialty)
(Desired) AZURE certifications
(Desired) Experience with regulatory frameworks like GDPR, CCPA, or HIPAA

Responsibilities

Secure the AWS & AZURE Platform: Implement best practices to ensure AWS & AZURE applications are “secure by design” and “secure by default” protecting sensitive data and workflows
Provide guidelines on usage of AppExchange / Vendor products versus using out of box capabilities with a keen eye for cybersecurity risk
Risk Identification & Mitigation: Proactively identify security risks across the AWS & AZURE ecosystem and implement solutions to address vulnerabilities
DevSecOps Enablement: Drive DevSecOps practices within the organization by embedding security into the development lifecycle of AWS & AZURE applications
Collaboration with Stakeholders: Partner with various customer portfolio teams to influence their roadmaps, ensuring security is a foundational element in their strategies
Data Security & Compliance: Ensure compliance with data protection regulations and implement robust data security measures within AWS & AZURE and integrated systems
Cloud Integration Expertise: Leverage your knowledge of AWS & AZURE to secure integrations
Continuous Improvement: Stay up to date on emerging threats, trends, and technologies in application security to continuously improve our security posture
Communication & Advocacy: Act as a trusted advisor on security matters, effectively communicating complex technical concepts to both technical and non-technical stakeholders

Skills

Key technologies and capabilities for this role

AWSAzureDevSecOpsCloud SecuritySecurity AutomationSaaSPaaSComplianceRisk MitigationData Protection

Questions & Answers

Common questions about this position

What is the salary for this Principal Cloud Security Engineer position?

This information is not specified in the job description.

Is this role remote or does it require office work?

This information is not specified in the job description.

What key skills and experience are required for this role?

Candidates need 5+ years in DevSecOps, DevOps or Security Engineering, 3+ years with shell scripting, aws-cli, python, and lambda, and 1+ years with Terraform. Additional requirements include knowledge of CI/CD technologies, continuous security practices, infrastructure as code, and integrating security into AWS & AZURE applications.

What does the team structure look like for this position?

This role is part of the Cybersecurity Application Platform Security Team and involves collaboration with various customer portfolio teams.

What makes a strong candidate for this Principal Cloud Security Engineer role?

A strong candidate has recent hands-on experience in DevSecOps with AWS and AZURE, including scripting, Terraform, CI/CD, and security integration, plus proficiency in data protection techniques and a Bachelor's degree.

Astra

Provides launch services for small satellites

About Astra

Astra provides launch services specifically for small satellites, catering to commercial businesses, government agencies, and research institutions that need reliable access to space. The company operates small, agile rockets designed to transport these satellites into low Earth orbit (LEO). Astra's approach focuses on making space more accessible by reducing the costs and complexities associated with satellite launches, which allows a wider range of customers to utilize their services. Unlike many competitors, Astra emphasizes efficiency and cost-effectiveness in its operations, aiming to meet the growing demand for satellite-based services such as Earth observation and telecommunications. The company's goal is to facilitate more frequent and affordable satellite launches, thereby expanding opportunities for various applications in the space industry.

Alameda, CaliforniaHeadquarters

2016Year Founded

$291.8MTotal Funding

IPOCompany Stage

AerospaceIndustries

201-500Employees

Benefits

Competitive Medical (HMO & PPO)/Dental/Vision plans

Company paid Short Term Disability and Long Term Disability plans

401K with company match

Flexible Spending Account

Commuter benefits

Caregiving support benefits

Company perks, like PetPlan, curated gym/travel/products discounts

Free lunch

Company events

Risks

Going private may limit Astra's access to public capital markets.

Astra faces financial instability due to liquidity crunch and high cost of capital.

Intensifying competition in the small satellite launch market could impact Astra's market share.

Differentiation

Astra offers cost-effective launch services for small satellite payloads.

The company focuses on agile rockets for frequent access to space.

Astra provides online reservations for payload deliveries to various orbits.

Upsides

Growing demand for small satellite constellations aligns with Astra's business model.

U.S. government investment in space technology presents contract opportunities for Astra.

Astra's reusable rocket technology could lead to significant cost reductions.

Land your dream remote job 3x faster with AI

Try Jobo Free