Job Description
Introduction:
As a Security Engineer at Sword, you will be at the forefront of safeguarding our cloud infrastructure, and applications. Your expertise will ensure robust security measures, incident response, and continuous improvement.
What you'll be doing:
Design, implement, and maintain secure cloud-based infrastructure and applications, and secure configurations across GCP and AWS to ensure Sword remains secure and HIPAA- and GDPR-Compliant.Ensure incident response capability through the evaluation of our logging and traceability resources, providing guidance on optimal resource utilization and availability.Monitor cloud environments for security threats, vulnerabilities and misconfigs, and respond promptly to security breaches, ensuring effective incident response protocols.Perform root cause analyses (RCA) and incident reviewsAdvise on compensatory and mitigatory controls strategically, serving as a key element in incident response management.Collaborate with cross-functional teams to design, develop, and implement infrastructure automation, shell scripts, and other programs that enhance security.Identify and ensure the availability of crucial data sources and logs used by the security team.Management of vulnerabilities and patching policies.Develop, evangelize, and monitor the adoption of sound cloud security practices and standards, acting proactively to hardening and fine tuning initiatives.Develop new, and review/update existing security-related configurations of Sword Health’s infrastructure.Identify new, and ensure availability of existing Sword Health data sources and logs that are being used by various Sword Health Security teams.Ownership and management of preventative security measures and services related to Sword Health, i.e. GCP’s Security Command Center, Wiz, etc.What you need to have:
Bachelor's degree in Computer Science, Information Security, or equivalent work experience in a related field.Minimum of 5 years of experience in cloud security, with hands-on experience in GCP and AWS.Strong understanding of cloud security concepts, including IAM, network security, encryption, and secure cloud configurations.Proficiency in scripting languages (e.g., Python, Bash) for automation and infrastructure management.Experience with cloud security tools such as Wiz, Google Security Command Center, AWS Security Hub, AWS GuardDuty, and SIEM platforms.Knowledge of common security frameworks and standards, such as NIST, CIS, and COBIT.Excellent problem-solving skills and the ability to think critically and strategically.What we would love to see:
Experience with secure software development practices.Knowledge of container orchestration platforms (e.g., Kubernetes).Familiarity with threat modeling and risk assessment methodologies.Experience in tailoring and implementing compensatory/mitigatory controls in cloud environments.Strong communication skills, with the ability to convey complex security concepts to both technical and non-technical stakeholders.Experience leading security-related projects and working in cross-functional teams.Demonstrated ability to collaborate effectively with colleagues and build strong working relationships.Certifications such as AWS Certified Security - Specialty, Google Cloud Professional Cloud Security Engineer, or Certified Information Systems Security Professional (CISSP) are highly desirable.
