Senior Infrastructure Security Engineer

Position Overview:

We are seeking an inspired and motivated technical contributor to join the DigitalOcean Security Team as an Infrastructure Security Engineer. You will report to the Security Engineering Manager for the APAC region and will be a key member of DigitalOcean’s security team. In this role, you will play an essential part in enhancing DigitalOcean's security posture. This includes collaborating with various Engineering and Security teams to:

• Design and implement infrastructure security solutions at scale
• Identify and mitigate security issues, vulnerabilities, and misconfigurations for both internal users and customers

Your efforts will provide security instrumentation and establish secure architectures within DigitalOcean’s environments, both corporate and customer-facing.

What You’ll Do:

• Establishing an understanding of DigitalOcean’s production and corporate environments, from applications to infrastructure, keeping up-to-date with material changes and future directions
• Partnering closely with the other technical teams within the Security Organization and across our engineering and other functions to harden accounts, platforms, and service structures to combat intrusions, hijackings, and potential compromises
• Developing early warning systems to detect, respond, and mitigate risks to the business as well as the customer environment
• Develop, maintain, and monitor the adoption of sound Cloud security practices
• Ownership of vulnerability management and patching policies of Virtual machines, Containers and Kubernetes infrastructure
• Identify and help mitigate security issues and misconfigurations related to Cloud services, Virtual machines, Containers and Kubernetes infrastructure
• Ownership and management of preventative security measures and services such as WAF, SIEM and similar security solutions.
• Consistently improving security as the company scales, driving continuous improvement through data collection and correlation, being mindful that security should be an efficiency enabler for the business, not a detractor
  
  

What You’ll Add to DigitalOcean:

• 5+ years of experience in cloud and infrastructure security, with hands-on expertise in building automated detection and remediation workflows, enforcing security policies, hardening container and Kubernetes environments, and managing security monitoring across Linux-based, multi-cloud, and multi-tenant architectures.
• Vulnerability Management experience, focused on prioritizing known vulnerabilities for remediation at scale and classifying previously unknown vulnerabilities
• Strong understanding of Linux systems and common O/S hardening practices
• Hands-on experience with cloud service providers. Amazon Web Services (AWS) is a core requirement, while familiarity with Google Cloud Platform (GCP) is a strong advantage. Focus areas include security issues and misconfigurations across cloud services, virtual machines, containers, and Kubernetes infrastructure.
• Strong understanding of systems in a multi-tenant, cloud environment
• Clear written and verbal communication skills to include: technical writing, presenting, coaching, mentoring
• Bonus: Experience in one or more of the following areas:
• Infrastructure as code 
• Configuration as Code software and methods (eg, Chef, Salt, Ansible)
• Software Development background

*This job is located in Hyderabad, India

#LI-Hybrid