Job Title:

Lead DevOps Security Engineer

Overview:

Lead DevOps Security Engineer

- Overview
- This position will work as part of a DevOps team that focuses on security services for Mastercard. 100% in AWS, this environment consists of dozens of AWS accounts that provide infrastructure and security services for the RiskRecon product for Mastercard. AWS proficiency is required. Especially in infrastructure, security, automation, deployment maturity, monitoring/alerting, along with self healing of environments. Team works heavily with development groups along with product management to ensure a quick pace along with robust security and uptime.
- Role
- Proficient in AWS Networking
- VPCs, Subnetting, NAT, NACLs, Security Groups, VPC Endpoints, Transit Gateways, Routing Tables, Network Interfaces, etc.
- Application Load Balancers, Network Load Balancers, Target Groups, Network Bridging, Listener Routing, etc.
- WAF rules and logging, Shield configuration and monitoring, DDOS protection, Cloudfront configuration
- Route 53
- Proficient in AWS EC2
- Linux instances, volumes, spot, hardened and secured AMIs, snapshots, auto scaling groups, launch templates, etc
- Proficient in AWS ECS
- Docker, Tasks, Clusters, etc
- Proficient in Cloudtrail and Cloudwatch
- Logging, monitoring, and alerting for infrastructure and security issues
- Proficient in AWS EKS
- Docker, Clusters, resources, and instances
- Proficient in AWS IAM
- Roles, Policies, Resource policies, conditions, SCPs, etc
- Proficient in Linux OS
- Shell scripting, host monitoring and alerting, host tuning
- Proficient in AWS CLI and Systems Manager
- Automation and Administration
- Proficient in AWS Config
- Compliance and reporting
- Good understanding of Git, AWS Codecommit, Terraform, RDS, KMS, HSM, Workspaces
-
All about You/Experience
- Candidate must have at least 10 years of experience in Enterprise Level Information Technology experience
- Candidate must have a minimum of 5 years of AWS experience working with multiple AWS accounts
- Candidate should have a Bachelors Degree
- Ideal candidate will be able to function individually and within a team. Excellent communication skills required. Will be responsible for infrastructure and security for large multi-account AWS environment and must have experience working within a similar environment. Must be able to compile documentation as well as regular system and security reports.