Security Engineer (Software Development + Cloud Security + K8s)

Job Title:  Security Engineer

Job Location: Remote, India

Does the challenge of finding security flaws in custom application code get your mind racing? Can you think like an attacker to misuse and break cloud services? Do you have an interest in compliance and simplifying the process for achieving it? Join Acquia and help enhance the security of the largest sites and brands on the planet, whose Drupal apps are powered by our PaaS platform and SaaS services built on top of many thousands of AWS EC2 instances.  

Summary:

Acquia runs one of the world's largest Platform as a Service (PaaS) offerings. Our Drupal optimized cloud runs on over 10,000 AWS instances and delivers billions of page views monthly for our clients, running some of the largest and most mission-critical websites in the world. We are seeking passionate application security engineers with a strong security mindset who are willing to take the initiative to tackle important problems across multiple products at Acquia, with a focus on our cloud hosting platform. 

Our cloud engineering team utilizes a variety of programming languages and technologies to tackle many interesting architecture and scalability challenges. Although we run PHP & MySQL at a massive scale for our Drupal customers, on the backend we’re building scalable systems, automation and stack enhancements in everything from Ruby to Go, and storing data in everything from MySQL to DynamoDB.

At Acquia we work on a variety of exciting projects ranging from running massive microservice infrastructures, to building highly available database clusters using the latest technologies, to building streaming log pipelines and ultimately being the best place in the world to run Drupal websites. We’re one of Amazon’s largest partners and run our workloads in 9 AWS regions.

Job Description:

• Be a Security Champion in an agile Security Engineering team owning and operating the services you build
• Research, specify, and test cloud hosting architectures leveraging your web, database, and OS knowledge
• Debug the toughest distributed systems production issues

Job Requirements:

• 3+ years of related experience in Security Engineering 
• Cloud security and compliance experience using AWS (e.g., Firewalls, IDS/IPS systems, DDOS prevention and PCI-DSS, HIPAA, FedRAMP, etc.)
• Strong software development background using any general programming language
• Understanding of Kubernetes
• Passion for websites and website delivery architecture
• Deep, working knowledge of LAMP stack--OS, web server, and database systems (Linux, Apache, and MySQL preferred)
• Linux packages (e.g., Debian or RPM packages); RHEL and Ubuntu experience
• Networking (e.g., TCP/IP, Routing, DNS, load balancing, HTTP caching, clustering, VPN, etc.)
• Holistic understanding of the Internet and hosting from the network layer up through the application layer.
• Excellent organizational and communication skills, both verbal and written
• BS in Computer Science or equivalent experience
• Ability to work effectively across multiple teams and drive results

Extra Credit:

• Software development using Python or Go
• Experience with threat modeling, especially for web application and web APIs
• Configuration management (e.g., Terraform, CloudFormation, etc.)
• Containerization:  Docker, LXC, etc.
• Kubernetes: Hands-on, working experience securing K8s deployments according to “hard multi-tenancy” guidelines and methods.  

Acquia is an equal opportunity (EEO) employer. We hire without regard to age, color, disability, gender (including gender identity), marital status, national origin, race, religion, sex, sexual orientation, veteran status, or any other status protected by applicable law.