Opportunities

Senior Systems Engineer

Boston Metro Area, MA

Posted: 04/21/2022 Job Number: JN -042022-4724

Job Description

Our client, a global technology company, has an immediate need for a Senior Systems Engineer. This role will be fully remote.

Responsibilities:
  • Assistance in compliance evidence submission and automation.
  • Automation of evidence collection for "continuous control monitoring", a plus if you familiar with SOC2, ISO 27001, SOX, Hi Trust or FedRAMP (not required).
  • Converting to rootless Docker, CIS Benchmarks for docker, secure and maintain
  • Work on migrating processes to CI/CD pipelines
  • Generate dynamic lifecycle policies for ECR
  • Supporting the lvl 3 security engineers as well as general SecOps
  • Provide detailed design, and inclusion of detail that caters to engineering and engineering leadership.

Requirements:
  • Advanced proficiency in AWS and its services.
  • SCP, Inspector, SSM, Config, CloudTrail/Watch, S3, Lifecycle Policies in general, IAM.
  • Ideally has several AWS certifications.
  • Linux expert (Ubuntu, Debian)
  • Must have knowledge of system, general systems troubleshooting and be familiar with sys-admin commands, sed/awk, grep etc.
  • Scripting expert (Python, Bash, Ruby)
  • Must be able to write scripts to talk with APIs and run-on AWS Lambda.
  • This is an EXPLICIT requirement, and a job will not be offered without this.
  • Expert in Terraform (Security, Best Practices)
  • Must be able to explain setting up TF environment, explain TF modules and their use, explain TF security.
  • Advanced with EKS/Kubernetes (Architecture, Security and SRE)
  • Familiar with CIS Benchmarks and configuring EKS/K8s in a secure and maintainable way.
  • Advanced skills with Docker (Security and SRE), Packer
  • Converting to rootless Docker, CIS Benchmarks for docker, secure and maintain.
  • Generate dynamic lifecycle policies for ECR
  • Pipeline the minting of secure AMIs and container images, block the deploy of vulnerable images.
  • Familiar with the principals of least privilege/zero trust
  • Working knowledge of Git (CloudHealth uses GitHub)
  • Become familiar with CodeQL (Static Code Analysis), able to use GitHub API for advanced queries and reporting.
  • Renovate Bot, Dependabot.
  • Excellent documentation skills.
  • Understanding of Source Code security practices and SDLC.
  • Strong understanding of CI/CD Pipelines and how to effectively use them.
  • Fundamental grasp of Ruby and/or Python and loves to dive in
Bonuses:
  • Worked in a Ruby shop
  • Has lots of experience with advanced AWS IAM Principles ( SCPs, Permission boundaries, etc)
  • Heavy terraform experience and experience with state migrations
  • Experience with AWS Account-wide security practices and implementations
  • Worked on migrating processes to CI/CD Pipelines
  • Migrated from SSH to AWS SSM
About Vivo

Having been in business since 2006, Vivo is a full-service recruiting and consulting company, specializing on mid to senior level technology resources. Our brand promise is simple: we get people. We get that our clients don t want to waste time, and that our candidates and employees thrive when given honest feedback and an opportunity to grow.

Whether you re onsite at our Pleasanton headquarters or working for one of Vivo s clients the best brand names out there our promise to you is unwavering: we will treat you like you are our most important employee.

Do you think you get people get what they really need, and get how to deliver? We re not perfect but we re accountable. We re not in 32 countries, but we are in the heart of it all. So, if you are looking for a flexible, fun and high-energy work environment, along with the opportunity to work with some of the world s technology leaders, we can t wait to talk to you.

Vivo We Get People!

Apply Online

Send an email reminder to:

Share This Job:

Related Jobs:

Login to save this search and get notified of similar positions.