Currently Empty: $0.00
Cloud Security Engineer
Ulta
Salary- $60K/yr - $70K/yr
Hybrid
Posted 3 days ago
Title: Cloud Security Engineer
Location: Hybrid
Executive Summary
The Cloud Security Engineer will work closely with the Integration Modernization team to design, implement, and monitor security measures across various integration tools. They will ensure the integrity, confidentiality, and availability of data as it flows between systems. The security engineer will also assist in defining policies and best practices for integrating TIBCO, APIGEE, Kafka, and any future tools. This role will involve both strategic planning and tactical implementation.
Key responsibilities include:
- Tool and Platform Security:
- Ensure security configurations of TIBCO, APIGEE, Kafka, and other integration tools are aligned with industry standards and organizational policies.
- Manage security integrations with Ulta’s identity management systems
- Monitoring and Incident Response:
- Set up continuous monitoring for security events and anomalies across the integration platforms.
- Respond to security incidents and provide remediation guidance in the event of breaches or vulnerabilities.
- Compliance and Auditing:
- Ensure compliance with relevant industry standards and regulations (e.g., GDPR, HIPAA, SOC 2, etc.) for the tools and services in use.
- Conduct regular audits of security controls and recommend improvements as needed.
- Documentation and Knowledge Transfer:
- Maintain up-to-date security documentation for each platform transferring monitoring and incident response to the Security Operations Center.
- Conduct knowledge transfer sessions for the wider IT and security teams to ensure ongoing security practices are followed.
Skills and Experience Required
The ideal candidate will have a combination of the following skills and experience:
Technical Skills:
- Cloud Security Expertise: Experience securing cloud-based architectures, including AWS, Azure, or Google Cloud.
- Integration Platforms: Deep knowledge of integration tools such as TIBCO, APIGEE, and Kafka with a focus on security.
- API Security: Expertise in securing APIs using industry-standard protocols (OAuth 2.0, OpenID Connect, JWT, etc.).
- Network Security: Knowledge of securing microservices, messaging systems, and network communication in hybrid and multi-cloud environments.