Security Engineer

Acquia empowers the world’s most ambitious brands to create digital customer experiences that matter. With open source Drupal at its core, the Acquia Digital Experience Platform (DXP) enables marketers, developers, and IT operations teams at thousands of global organizations to rapidly compose and deploy digital products and services that engage customers, enhance conversions, and help businesses stand out.

Headquartered in the U.S., Acquia is positioned as a market leader by the analyst community and is listed as one of the world’s top software companies by The Software Report. We are Acquia. We are a global company with employees located in more than 30 countries, and we’re building for the future. We want you to be a part of it!

Does the challenge of finding security flaws in custom application code get your mind racing? Can you think like an attacker to misuse and break cloud services? Do you have an interest in compliance and simplifying the process for achieving it? Join Acquia and help enhance the security of the largest sites and brands on the planet, whose Drupal apps are powered by our PaaS platform and SaaS services built on top of many thousands of AWS EC2 instances.

Job Responsibilities:

• Be a Security Champion in an agile Security Engineering team owning and operating the services you build
• Research, specify, and test cloud hosting architectures leveraging your web, database, and OS knowledge
• Debug the toughest distributed systems production issues

Skills:

• 2-6 years of related experience
• Cloud security and compliance experience using AWS (e.g., Firewalls, IDS/IPS systems, DDOS prevention and PCI-DSS, HIPAA, FedRAMP, etc.)
• Strong software development background using any general programming language
• Understanding of Kubernetes
• Passion for websites and website delivery architecture
• Deep, working knowledge of LAMP stack--OS, web server, and database systems (Linux, Apache, and MySQL preferred)
• Linux packages (e.g., Debian or RPM packages); RHEL and Ubuntu experience
• Networking (e.g., TCP/IP, Routing, DNS, load balancing, HTTP caching, clustering, VPN, etc.)
• Holistic understanding of the Internet and hosting from the network layer up through the application layer.
• Excellent organizational and communication skills, both verbal and written
• BS in Computer Science or equivalent experience
• Ability to work effectively across multiple teams and drive results

Preferred Qualifications: 

• Software development using Python or Go
• Experience with threat modeling, especially for web application and web APIs
• Configuration management (e.g., Terraform, CloudFormation, etc.)
• Containerization:  Docker, LXC, etc.
• Kubernetes: Hands-on, working experience securing K8s deployments according to “hard multi-tenancy” guidelines and methods.

All qualified applicants will receive consideration for employment without regard to race, color, religion, religious creed, sex, national origin, ancestry, age, physical or mental disability, medical condition, genetic information, military and veteran status, marital status, pregnancy, gender, gender expression, gender identity, sexual orientation, or any other characteristic protected by local law, regulation, or ordinance.