Security Infrastructure Engineer

LotusFlare Simplifying technology to simplify the experience, LotusFlare has built the only digital BSS that delivers valuable outcomes to CSPs. As Security Engineer on the Infrastructure Team at LotusFlare, you will be responsible for driving the overall IT security standards across our cloud-native DNO stack. This incorporates security policies and domain security concepts along with the implementation and the lifecycle of security controls and security-focused services and systems in LotusFlare’s infrastructure. LotusFlare is thriving for automation over operations and embraces modern DevSecOps paradigms to maintain the state of our environments programmatically. This extends to the security efforts, ensuring programmatically a secure state of our environments and leveraging modern drift and anomaly detection and response solutions. As Senior Security Engineer, you will report to the VP of Infrastructure and engage directly with infrastructure and product engineering teams. Required Skills At least 3+ years of experience in a similar technical security role Excellent knowledge in development and implementation of the following concepts: Network Security Concepts Linux System Security and System Hardening Data Classification and Data Security Concepts Cloud Security, particularly AWS Understanding of various user access controls, SSO, user profile integrity, and access management controls Experience in Server Application security concepts and security controls Experience with intrusion detection solutions and web application firewalls/L7 proxies Experience with containerisation technologies (Docker, K8s) Planning and executing security scans and continuous security and threat monitoring DevSecOps experience, implementation of security controls, and familiarity with SCAP and continuous security monitoring solutions Ability to analyze and resolve complex infrastructure resource and application deployment issues Minimum Intermediate level of English Responsibilities Actively managing the security of our cloud-native runtime environment Clearly and promptly communicate and negotiate security technical topics with both technical and non-technical audiences Drive security improvements to production cloud environments Perform targeted offensive security testing Implement continuous monitoring systems and tools to automatically identify potential security issues at the code, application, and infrastructure layers Conduct security audits in cloud environments Review code and other production changes with the goal to maintain the security standards Develop documentation listing recommendations and best practices for infrastructure and organizational security standards Stay current on emerging security threats, vulnerabilities, and controls for the cloud Work with backend engineering teams on architecting, profiling, and monitoring high-performance high availability product components as microservices, providing mission-critical real-time functionality on the control plane of mobile and fixed networks Evolve the infrastructure and keep our stack up to date with the latest technologies. #J-18808-Ljbffr