CStack Security Engineer (GovTech) at AvePoint

<p>We are seeking a skilled and passionate Security Engineer to join our team. In this role, you will be responsible for ensuring the security, compliance, and resilience of our infrastructure and applications. You will work closely with cross-functional teams to monitor, respond to, and remediate security incidents across our cloud-native ecosystem.</p> <p><strong>Responsibilities:</strong></p> <p><span style="text-decoration: underline;">Security Monitoring &amp; Incident Response</span><br>• Oversee and respond to alerts from AWS GuardDuty, ensuring timely investigation and remediation of incidents.<br>• Execute security playbooks to handle alerts, and enhance them based on evolving threats and operational insights.<br><span style="text-decoration: underline;">Vulnerability &amp; Patch Management</span><br>• Coordinate the identification and application of security patches across GitLab, AWS, and Kubernetes components.<br>• Ensure that our infrastructure remains resilient to new vulnerabilities through regular patch cycles and proactive risk assessments.<br><span style="text-decoration: underline;">Log Analysis &amp; SIEM Management</span><br>• Conduct weekly SIEM reviews to analyze security logs, detect anomalies, and escalate issues as necessary.<br>• Collaborate with the SecOps team to refine monitoring strategies and alerting thresholds.<br><span style="text-decoration: underline;">Reporting &amp; Documentation</span><br>• Prepare monthly SecOps reports summarizing incident trends, response actions, and areas for improvement.<br>• Maintain and update documentation related to security processes, incident response, and playbooks.<br><span style="text-decoration: underline;">Collaboration &amp; Continuous Improvement</span><br>• Work closely with development, operations, and other security teams to integrate security best practices into CI/CD pipelines and cloud deployments.<br>• Proactively contribute to security strategy discussions, sharing insights and recommendations for enhanced security posture.</p> <p><strong>Requirements:</strong></p> <p>• Proven experience managing cloud security, particularly within AWS environments (including GuardDuty, IAM, and other AWS security services).<br>• Solid background in securing Kubernetes clusters (preferably on EKS) including experience with container security best practices.<br>• Experience with SIEM tools and log analysis for threat detection.<br>• Proficiency in applying security patches and vulnerability management across cloud and containerized environments.<br>• Familiarity with CI/CD pipelines (GitLab or equivalent) and integrating security into DevOps practices.<br>• Hands-on experience with incident response, including following and refining security playbooks.<br>• Working knowledge of networking, encryption, and other fundamental security concepts.<br>• Security certifications for AWS (such as AWS Certified Security – Specialty) and Kubernetes (such as Certified Kubernetes Security Specialist or equivalent) are highly desirable.</p> <p><strong>Soft skills:</strong></p> <p>• Excellent problem-solving and analytical abilities with a keen attention to detail.<br>• Strong communication skills to clearly articulate security issues and collaborate across teams.<br>• Proactive mindset with the ability to work independently and in a fast-paced environment.<br>• Adaptability and willingness to continuously learn and apply new security practices.</p><div class="content-conclusion"><p><span data-teams="true"><span class="ui-provider a b c d e f g h i j k l m n o p q r s t u v w x y z ab ac ae af ag ah ai aj ak">Any personal data you share with us during the application process will be processed strictly in compliance with applicable data protection laws and our <a id="menur12n" class="fui-Link ___1q1shib f2hkw1w f3rmtva f1ewtqcl fyind8e f1k6fduh f1w7gpdv fk6fouc fjoy568 figsok6 f1s184ao f1mk8lai fnbmjn9 f1o700av f13mvf36 f1cmlufx f9n3di6 f1ids18y f1tx3yz7 f1deo86v f1eh06m1 f1iescvh fhgqx19 f1olyrje f1p93eir f1nev41a f1h8hb77 f1lqvz6u f10aw75t fsle3fq f17ae5zn" href="https://www.avepoint.com/company/privacy-notice" target="_blank">Privacy Notice</a>.</span></span></p></div>