Full-Time Senior Engineer II - Cloud Security Team

As a Cloud Security Engineer, you will be a subject matter expert, designing, deploying, integrating, and tuning Cloud security technologies. You will lead projects to integrate security solutions while coordinating efforts across teams. This position will also provide security best practices and guidance to for Publix Super Markets, Inc.

Responsibilities

• Serves as InfoSec SME by maintaining knowledge of industry-recognized security technologies and concepts.
• Assist with planning and managing project efforts to define, implement, upgrade, enhance, and maintain Security Information and Event Management (SIEM), Security Orchestration, Automation, and Response (SOAR), log aggregation, and cloud-native application protection platform (CNAPP)
• Work closely with various team members for log ingestion, data enrichment, and automation via the SIEM/SOAR solution.
• Develop data pipelines for ingesting, parsing, filtering, and routing logs to various destinations.
• Create security automation for response and remediation of compliance findings and hardening of cloud infrastructure for Azure and Google Cloud Platform (Google Cloud Platform)
• Play a key role in ensuring our cloud capabilities meet PCI/SOX/HIPAA/PII compliance standards,
• Provide security consultation and guidance on new cloud products, features, and technology decisions,
• Work closely with various team members to refine and enhance the risk strategy for cloud architecture,
• Participate with the team in an on-call rotation ? Tier III support to applications owned by the team.
• Bachelor?s degree in Management Information Systems, Computer Science, Information Security or other technical/analytical disciplines, or equivalent experience,
• 4+ years of experience in an IT Security Engineering discipline or related engineering function
• Experience with engineering SIEM/SOAR and utilizing solutions such as Microsoft Sentinel, Azure Data Explorer, and/or Cribl.
• Experience with securing Cloud resources using enterprise tools such as Microsoft Defender for Cloud, Prisma Cloud, and/or Google Security Command Center
• Understanding of security requirements, best practices, and execution in various cloud implementation scenarios: IaaS, PaaS, SaaS
• Experience with scripting, automation, deployment orchestration, or security configuration management with at least one of the following Terraform, Chef, Puppet, YAML, JSON, PowerShell, BASH, Go, or Python
• Knowledge of CI/CD pipelines, containers, container registries, and code repositories, and use of tools such as Jenkins, GitHub, Azure DevOps, etc.
• Knowledge of compliance and regulatory security requirements (SOX, PCI, HIPAA)
• Understanding of Agile methodologies
• Continued education including additional or advanced degrees in analytical, technical, or business discipline.
• 5+ years of experience in Cloud and/or application security engineering
• Experience with automation, deployment orchestration, and security configuration management with Terraform, Chef, Puppet, YAML, JSON, PowerShell, BASH, Go, or Python
• Experience with hardening CI/CD pipelines, containers, container registries, and code repositories, and use of tools such as Jenkins, GitHub, Azure DevOps, etc.
• Project management and leading projects to completion
• Familiarity with Cloud CIS benchmarks
• 1 or more of the following certifications: Security +, Cloud +, Microsoft Certified Azure Security Engineer Associate (MCASEA), Certified Cloud Security Professional (CCSP), and/or Certified Information Systems Security Professional (CISSP), ISSAP/ISSEP/ISSMP
• Employee stock ownership plan that contributes Publix stock to associates each year at no cost
• An opportunity to purchase additional shares of our privately-held stock
• 401(k) retirement savings plan
• Group health, dental and vision plans
• Paid Time Off
• Paid Parental Leave
• Short- and long-term disability insurance
• Tuition reimbursement
• Free hot lunches (buffet-style) at facilities with a cafeteria