DevSecOps Engineer

Overview

KUBRA is in growth mode and currently seeking a Cloud Security Engineer to work with our DevSecOps Team!

The Cloud Security Engineer is responsible for enhancing and validating the confidentiality, integrity, and security of all KUBRA systems and services and standardizing all security related practices within KUBRA.

What you get to do every day

• Perform security assessments of KUBRA systems, applications, and infrastructure providing written reports and recommendations for management review.
• Perform and review vulnerability assessments (including DAST and SAST).
• Build and maintain security tools with an emphasis on automation.
• Liaise with internal and external stakeholders to ensure security and compliance of all KUBRA owned computing systems and applications.
• Provide architectural security guidance to product engineering teams building software applications in compliance with industry standards (PCI-DSS, NIST, CIS) in public cloud environments.
• Review and suggest enhancements to SDLC and CI/CD processes
• Build threat models and security reporting tools.

What kind of person should you be?

• Maintain awareness of trends and changes in the Cybersecurity industry and threat landscape.
• Excellent written and verbal communications skills and an ability to maintain a high degree of professionalism in all client communications.
• Ability to influence others, build relationships, manage conflicts, and handle
• Understanding and following the business strategy, objectives, and adjusting to performance metrics.
• Excellent organization, time management, problem-solving, and analytical skills.
• Ability to handle pressure and focus on results

What skills do you need?

• Experience in public cloud is required (AWS, Azure, GCP)
• 2 years of experience in Cyber Security roles with a preference in engineering.
• Experience work with software development or devops teams is preferred.
• Experience in systems or network administration is preferred.
• Experience working with industry standard regulations and compliance frameworks (PCI-DSS, ISO, NIST, SANS, SOX, SOC II, HIPAA)
• Proficiency in a wide range of public cloud technologies (ex. AWS EC2, EKS, EBS, RDS, S3, etc).
• Proficiency in Infrastructure as Code (IaC) technologies such as Cloudformation or Terraform.
• Scripting and automation skills highly preferred (APIs, Python, Bash, Powershell, Go)

What can you expect from us?

• Award-winning culture that fosters growth, diversity and inclusion for all
• Paid day off for your birthday
• Access to LinkedIn learning courses
• Continued education with our education reimbursement program
• Flexible schedules
• Free unlimited access to our refreshment stations (fully stocked with tea, coffee and other beverages)
• Two paid days for volunteer opportunities

We are a fast-growing and dynamic company offering customer experience management solutions to some of the largest utility, insurance and government entities across North America. Our portfolio of meter-to-cash and outage communication solutions includes billing and payment, mapping, mobile apps and proactive customer communications solutions for customers. With more than 1 billion customer experiences annually, we have the ability to provide performance-driven value to more than 550 clients every day.

Our office is small enough to allow creative individuals to flourish, yet large enough to provide long-term stability. We place a tremendous amount of responsibility on our team members to be productive, focused and self-motivated. We offer a casual work environment, competitive compensation and a stellar benefits program.

KUBRA is an equal opportunity employer dedicated to building an inclusive and diverse workforce. We will provide accommodations during the recruitment process upon request by emailing the recruitment-team@kubra.com. Information received relating to accommodation will be addressed confidentially. We thank all applicants for their interest; however, only candidates under consideration will be contacted.