Senior Manager, Cloud Security Solutions at Equinix in Frisco, Texas

Job Description:

Senior Manager, Cloud Security Solutions

Equinix is the world’s digital infrastructure company, operating 210 data centers across the globe and providing interconnections to all the key clouds and networks. Businesses need one place to simplify and bring together fragmented, complex infrastructure that spans private and public cloud environments. Our global platform allows customers to place infrastructure wherever they need it and connect it to everything they need to succeed.

At Equinix, we help the world’s digital leaders scale with agility, speed the launch of digital services, deliver world-class experiences, and transform people’s lives. Our culture is based on collaboration and the growth and development of our teams.  

We hire hardworking people who thrive on solving challenging problems and give them opportunities to hone new skills, and try new approaches, as we grow our product portfolio with new software and network architecture solutions. We embrace diversity in thought and contribution and are committed to providing an equitable work environment that is foundational to our core values as a company and is vital to our success.

Job Summary: The Cloud Security Solutions Manager works within a multi-disciplinary team of engineers and architects to design, build and maintain integrated security solutions and design patterns for the enterprise. Success for this role is centered upon establishing and maintaining solid relationships and buy-in for risk-mitigation initiatives that serve as enablers of business transformation. This role will be engaged on numerous projects to enhance, implement and automate cloud platform controls. In addition, as part of a highly agile and cross functional team, this role will lead security engineering projects that include but not limited to prototyping new technologies, tools and services within multi-cloud environments. Understanding cloud threats and driving to technical solutions enables the engineer to constantly work on exciting challenges.  As threats continue to evolve, regulatory requirements and business challenges also change.  This role will contribut­e to the manifestation of the organizations control framework and contribute to engineering cloud controls as code, native cloud tool enablement and secure configurations.  

Responsibilities

• Architect, plan, and implement cloud security solutions that balance simplicity, standards, scalability, extensibility, supportability. Design, build and automate security controls and contribute to Infrastructure as Code enterprise repository




• Look for opportunities to automate security specification and verification in the delivery process




• Drive security execution within a cross-functional team to architect, engineer and implement security controls within AWS, GCP, and Azure cloud platforms. Build security practices in cloud platforms and development pipelines using native and third-party capabilities




• Understand current and new cloud threats and engineering risk mitigation using cloud native tools




• Works in active partnership with technical stakeholders (solution, infrastructure, and application architects) to deliver security cloud governance




• Develops security cloud domain expertise and technical objectives that will enable successful and secure delivery of project and program goals, thereby supporting the growth and evolution of the organization




• Drive updates to cloud control matrix through new requirements driven through policy, regulatory and legal mandates and be able to rationalize them with various technology and business leaders




• Execute follow-through by helping projects and programs build capabilities that provide data required to support metrics




• Propose and implement secure configuration of cloud workloads




• Support Product Owner and drive engineering solutions and security as code strategy




• Evaluate new cloud technologies and makes substantiated recommendations for improving security capabilities




• Managing, maintaining, and supporting our Container Security Vulnerability tool(s) to include managing the output and working hands-on with the DevOps and Infrastructure teams to drive remediation




• Supporting the building, production, and maintenance of metrics associated with the container security program




• Guiding development teams in best practices across all stages of the SDLC




• Monitoring and responding to Open Source Software weaknesses and exposures




• Participate and lead design sessions for workloads teams needing to understand cloud security patterns and protection profiles

Qualifications

• 6 years’ experience or master’s degree in Information Security with 10+ years equivalent demonstrated work experience in managing, maintaining, and supporting Application Security, Ethical Hacking, or Container Security Vulnerability tool(s) to include managing the output and working hands-on with the DevOps and Infrastructure teams to drive remediation




• Broad knowledge of information technology and security controls in various application and infrastructure platforms including network (physical, virtual, internal, cloud), system platforms, storage, directory services, and end user computing.




• Supporting the building, production, and maintenance of metrics associated with the container security




• Monitoring and responding to Open Source Software weaknesses and exposures




• Developing and updating security patterns & user stories aligned with the security requirement Qualifications Required Skills/Experience:




• Solid understanding of Cloud platforms such as AWS, Azure, and GCP· Experience with container orchestration technologies such as Docker, Kubernetes, Openshift




• Hands-on experience with Agile, DevOps and DevSecOps methodologies is a plus




• Assist in developing an automated framework for Security Tool deployment and development, leveraging various scripting languages and open source solutions




• Understanding of Infrastructure as Code· Experience moving to a DevOps / DevSecOps environment




• Experience with agile development and CI/CD pipelines· Experience with container/orchestration tools




• Recent experience with enterprise configuration management software like Red Hat Ansible Automation, Puppet, or Chef




• Hands on experience AWS / Windows / Linux Security • Highly proficient in at least one major scripting/programming language (Python, Ruby, Node, Java, R, Go…) Proficient in shell scripting (Bash, PowerShell…) • Deep understanding of container security tools, and experience with products such as Qualys or Tenable. 




• Ability to present complex, technical information to a variety of audiences, both technical and nontechnical, in written and/or oral formats

• Demonstrated strong analytical and problem-solving skills.




• Demonstrated ability to work within globally dispersed and cross-functional teams.

Preferred Qualifications:

• Cloud Vendor Certifications on AWS, GCP or Azure




• Bachelor’s Degree in an Information Security, Cybersecurity, Software Engineering, Computer Science or equivalent. Master’s Degree in a related field a plus.




• Experience designing and engineering secure solutions within IaaS/PaaS/SaaS cloud platforms




• Experience in application security, or as developer building secure applications




• Good understanding of cloud security frameworks and standards (NIST, CSA, ISO 27017/18 etc.)




• Good understanding of Federal and Regulatory standards like MARS-E, IRS 1075, HIPPA etc.




• Competent with technologies such as JSON, Python and/or Terraform




• Experience publishing engineering patterns or other reusable artifacts for cloud enablement




• Bachelor’s Degree or equivalent work experience




• One or more Security certifications (i.e. CISSP, CCSP, CISM, GSEC, SANS GIAG, ISSAP) or equivalent education




• Demonstrated knowledge of network security, mobile security, cloud security, and infrastructure security, including Windows, Unix/Linux.




• Knowledge of application security including API security including confidentiality, integrity, authentication, and authorization.




• Preferred experience with the transformation of traditional data center security measures into industry adopted cloud technologies including Amazon, Azure, Google, etc.

We offer Medical, TeleMedicine, Dental, Vision, Life and AD&D insurance, 401K, Leave of absence & disability benefits, paid time off & holidays and more.

In accordance with Colorado State Law (https://leg.colorado.gov/bills/sb19-085) the salary range forColorado for this role is $130,000 to $180,000 per year with 30% bonus target.

Equinix is an equal opportunity employer. All applicants will receive consideration for employment without regard to race, religion, color, national origin, sex, sexual orientation, gender identity, age, status as a protected veteran, or status as a qualified individual with disability.