Used Tools & Technologies
IaCRequired Skills & Competences
Tag name is followed by "@" symbol and proficiency level value.
About proficiency levels:
- 1-2 — basic awareness. Minimal hands-on experience, and a rudimentary understanding of the technology's purpose;
- 3-6 — daily use. Comfortable and regular usage, capable of handling common tasks and challenges related to the technology;
- 7-9 — you are an expert, you can teach others, you know all the pitfalls and tricks;
- 10 — exceptional knowledge, comprehensive understanding, and adeptness in all aspects of the technology, including advanced problem-solving. Think twice before claiming or demanding such level.
Security @ 4
Ansible @ 4
Go @ 4
Kubernetes @ 4
Linux @ 4
Terraform @ 4
Python @ 4
GCP @ 4
AWS @ 4
Azure @ 4
Bash @ 4
Communication @ 4
Cloudflare @ 4
PKI @ 4
Compliance @ 4
Agile @ 4
- 1-2 — basic awareness. Minimal hands-on experience, and a rudimentary understanding of the technology's purpose;
- 3-6 — daily use. Comfortable and regular usage, capable of handling common tasks and challenges related to the technology;
- 7-9 — you are an expert, you can teach others, you know all the pitfalls and tricks;
- 10 — exceptional knowledge, comprehensive understanding, and adeptness in all aspects of the technology, including advanced problem-solving. Think twice before claiming or demanding such level.
Details
Collibra is seeking an experienced security professional to join the Cloud Security Team within the Collibra Security Office (CSO). You will design, implement, and operate security controls across a multi-cloud environment (AWS, Azure, GCP), work hands-on with cloud-native security tooling, drive architectural decisions, and act as a technical authority for cloud security across the organization. This is a deeply technical individual contributor role that emphasizes automation and independent operation in ambiguous environments.
Responsibilities
- Help develop architectural requirements and corresponding engineering processes and technologies to support Collibra’s cloud-native platform
- Design and tune cloud-native detection rules and threat models for AWS GuardDuty, Microsoft Defender for Cloud, and GCP Security Command Center
- Conduct continuous vulnerability assessments of cloud workloads, container images, and serverless functions
- Develop, continuously improve, and ensure compliance with controls built for the cloud-native platform
- Partner with engineering teams to prioritize and drive remediation of cloud security findings
- Plan, organize, and manage multiple responsibilities from various stakeholders and sometimes competing requests to achieve objectives
- Maintain and update Cloudflare WAF rules to work with the Collibra product
- Evaluate and deploy cloud workload protection platforms (CWPP) and container security tooling
- Assist with technical response efforts for cloud security incidents, perform forensic analysis, and contribute to root-cause investigations
- Write production-quality code in Python, Golang/Go, or similar languages to build internal security tooling and automation
- Integrate security tooling into developer workflows to reduce friction while improving security outcomes
- Provide after-hours on-call support occasionally as required
Requirements
- Minimum of 8 years IT/Security experience across a wide range of disciplines
- Minimum of 2 years experience with Cloud Security or Cloud Engineering in Google Cloud Platform (GCP) and/or Amazon Web Services (AWS)
- Deep hands-on expertise across at least two major cloud platforms (AWS, Azure, GCP) and working knowledge of the third
- Experience with configuration management and Infrastructure as Code tools such as Terraform, Ansible, or similar
- Competency with GNU/Linux, Bash, and Python, Golang/Go or equivalent
- Hands-on experience with WAF rules (Cloudflare or equivalent)
- Demonstrated experience with cloud IAM architectures, secrets management, PKI, and encryption at rest/in transit
- Experience with container security, Kubernetes security hardening, and service mesh technologies
- Ability to work collaboratively with stakeholders distributed across time zones (UTC+2 to UTC-8)
- Experience with regulatory requirements and/or frameworks (FedRAMP, HIPAA, ISO 27001/2, NIST, SOC2, etc.)
- Advanced presentation and communication skills
- Desired certifications: CISSP, CISM, CCSK, or similar
- Bachelor’s degree or equivalent related working experience required
- This position is not eligible for visa sponsorship. Because this role supports the US government, the candidate must be a US citizen who resides on US soil.
You Are
- An excellent collaborator, teammate, and security practitioner
- Self-motivated with an ability to execute to completion
- Able to iterate quickly and independently to deliver solutions
- Eager to learn new technologies and broaden your skill set
- Familiar with security-by-design principles and able to educate other engineers
- Agile-minded, optimistic, passionate, and pragmatic about delivering valuable software
- Accustomed to a fast-paced environment and able to deliver rapidly
Measures of Success
- Within the first month: absorb Collibra processes/tools and begin building partner team relationships
- Within three months: take ownership of one or more partner team product environments and act as cloud security liaison for vulnerabilities and cloud misconfigurations; support monitoring and management of the Collibra WAF
- Within six months: drive consistent, repeatable, documented processes for security-driven infrastructure platforms and improve efficiencies
Compensation
- Base salary range: $152,000.00 - $190,000.00 per year
- Position is not eligible for commission-based compensation
- Additional total rewards may include bonus potential, equity for eligible roles, a Flex Fund monthly stipend, pension/401(k) plans, and more
Benefits
Collibra offers a flexible benefits program including competitive compensation, health coverage, time off, and programs to support diverse needs. Links in the original posting point to details on benefits and diversity, equity, and inclusion programs.