Sponsorship: No (Must be able to convert without sponsorship)

Skillset : AWS, DevSecOps, Kubernetes, Terraform , IAM TOOLS (OKTA ETC) , Zero-Trust

Description

Our client designs, manufactures, and supply the best-in-class commercial food and beverage equipment for the global foodservice market. We empower you to grow with us. We recognize you and reward you. We win together as one team. Bring your passion for excellence to our table.

As Sr Cloud Infrastructure & Security Engineer you will be responsible for integrating security practices within the DevOps lifecycle to ensure the continuous delivery of secure, scalable, and reliable software solutions. This role will work closely with development and QA teams to automate and enhance security measures across all stages of the CI/CD pipeline.

Reporting directly to the Lead Cloud Engineer, this position is based out of our corporate headquarters in New Port Richey, Florida and may work a hybrid schedule.

Major Accountability:

Design and Implementation

Management and Optimization

Security and Compliance

Continuous Improvements

Key Tasks & Responsibilities:

Security Automation: Implement security controls and tools within CI/CD pipelines to detect and prevent vulnerabilities early in the software development lifecycle.

Infrastructure as Code (IaC or IaaC) Security: Ensure security best practices are followed when deploying infrastructure through tools like Terraform, Ansible, and Kubernetes.

Continuous Monitoring: Develop and maintain automated monitoring and alerting systems for security events, using tools such as Splunk, ELK stack, or Cloud-native services.

Vulnerability Management: Conduct vulnerability assessments, patch management, and remediation in cloud and on-prem environments.

Incident Response: Collaborate with cross-functional teams to handle security incidents, investigate root causes, and implement corrective measures.

Security Policies & Compliance: Assist in maintaining security policies and ensuring compliance with standards like SOC 2 and NIST.

Collaboration: Work with development and operations teams to integrate security requirements into DevOps workflows, promoting a DevSecOps culture.

Security Tooling: Evaluate, implement, and maintain security tools such as SAST/DAST, WAFs, container security, and identity management solutions (e.g., OAuth, SAML).

Cloud Security: Design and implement security measures for cloud platforms (AWS, GCP, Azure) including identity management, encryption, and access control.