Cybersecurity Engineer

Company description

Worlder TEAM is a startup founded by four doctorates and a project manager from Carnegie Mellon University, one of the top universities in engineering and technology in the United States. Our company is on a mission to create a groundbreaking platform that empowers small and medium-sized enterprises (SMEs) to effortlessly expand their businesses globally, as outlined in our mission statement, "Create a platform that takes SMEs global effortlessly."

Experience: 6+ years of experience

Job Overview: We are seeking an experienced Cybersecurity Engineer with a strong emphasis on security in AWS to join our dynamic team. As a Cybersecurity Engineer, you will play a pivotal role in designing and implementing secure, scalable, and high-performance solutions on the AWS platform. The ideal candidate will bring a deep understanding of AWS services and a passion for developing robust, resilient, and secure architectures.

Responsibilities:

1. Collaborate with cross-functional teams to understand business requirements and design scalable and secure AWS solutions.
2. Architect, design, and implement cloud security solutions to protect sensitive information and ensure compliance with industry standards.
3. Provide expertise in identity and access management, encryption, network security, and other security-related AWS services.
4. Conduct security assessments, including penetration tests and recommend enhancements to address vulnerabilities and mitigate risks.
5. Conduct regular system audits to identify vulnerabilities and ensure compliance with security standards.
6. Develop and maintain our incident response plan, including monitoring systems for anomalies and responding to security incidents.
7. Work closely with development and operations teams to integrate security controls into the CI/CD pipeline.
8. Stay up to date on industry best practices, AWS security features, and emerging threats to continually improve the security posture of our systems.
9. Develop and deliver security training and awareness programs to staff.
10. Assist in the creation and maintenance of security policies, procedures, and documentation.

Qualifications:

1. CISSP certified.
2. Proven experience as a Cybersecurity Engineer with a focus on security in AWS.
3. In-depth knowledge of AWS services, including but not limited to EC2, S3, Lambda, IAM, VPC, KMS, CloudWatch, and CloudTrail.
4. Knowledge of AWS security tools: AWS WAF, AWS GuardDuty
5. Strong understanding of security principles, best practices, and standards in cloud environments.
6. Experience with designing and implementing secure, multi-tier, highly available architectures on AWS.
7. Ability to perform security audits on applications even though they are not hosted on the cloud.
8. Knowledge in fundamental database security and application security to address vulnerabilities such as Cross-Site Scripting, Cross-Site Request Forgery, SQL Injection, HTML Injection, etc.
9. Familiarity with compliance frameworks such as GDPR, HIPAA, and SOC 2.
10. Hands-on experience with security tools and technologies:
11. Vulnerability Scanning and Penetration Testing Tools (Nessus, Burp Suite, OWASP ZAP, etc)
12. Network Security and Monitoring Tools (Wireshark, Snort, Splunk, etc)
13. Endpoint Protection Tools (Symantec Endpoint Protection, Microsoft Defender ATP, etc)
14. Firewall and Network Defense Tools
15. Encryption Tools
16. Identity and Access Management (IAM) Tools
17. Knowledge of disaster recovery, computer forensic tools, technologies, and methods.
18. Excellent communication and collaboration skills with the ability to explain complex security concepts to technical and non-technical stakeholders.
19. Other certifications such as CISM, CEH, CompTIA Security+, or similar will be advantageous.

Benefits:

• Fully remote working with laptop provided.
• Entry into early stage tech startup.
• Work experience in innovative and fast paced startup environment.
• Space for growth and leadership opportunities.