Principal Cloud Application Security Engineer

Interos is the operational resilience company — reinventing how companies manage their supply chains and business relationships — through our breakthrough SaaS platform that uses artificial intelligence to model and transform the ecosystems of complex businesses into a living global map down to any single supplier, anywhere. The Interos Operational Resilience Cloud helps organizations reduce risk, avoid disruptions, and achieve superior enterprise adaptability. Based in Washington, DC, the fast-growing private company is led by CEO Ted Krantz and supported by investors Kleiner Perkins, NightDragon, and Venrock.

We are searching for an extraordinary team member who thrives as part of a fast-paced team and takes pride in their ability to succeed while delivering value to our customers. Help drive innovation and grow professionally by tackling solving one of the most critical business challenges of our time – building safe, secure and resilient supply chains to power growth and prosperity for all. Whether you are an innovator, explorer, problem-solver or beyond, we are looking for changemakers- people who see promise where others see obstacles.

Opportunity:

The Principal Cloud Application Security Engineer will lead the design and implementation of security solutions in support of Interos' product and cloud strategy. This position will focus on enabling business opportunities by ensuring the secure deployment of Interos applications and services. This role is responsible for securing cloud infrastructure, platforms, and software, and will collaborate with the Technology, Engineering, and Product teams to install, maintain, and upgrade the organization's cloud computing environments and core infrastructure. They are also responsible for documenting security in the public cloud platforms and maintaining security components of the cloud. Interos is at the forefront of Supply Chain Resilience Management innovation whose clients include Fortune 100 companies. As we embark on a critical phase of our growth, we are seeking a skilled and experienced Principal Cloud Application Security Engineer to join our dynamic team. This is a “hands-on-keyboard" type role. We are looking for someone to not just advise, but also implement secure solutions and serve as the technical expert for our organization.

Responsibilities:

• Cloud Security Strategy:
• Develop and implement comprehensive cloud security strategies aligned with business objectives.
• Assess current security practices, provide recommendations for, and implement improvements
• AWS (Amazon Web Services) Expertise:
• Lead the migration to a new architecture on AWS, ensuring optimal security configurations.
• Demonstrate subject matter expertise on AWS services, emphasizing security best practices.
• Containerization and Orchestration:
• Design and implement secure containerization strategies using Docker and orchestration with Kubernetes.
• Ensure the security of containerized applications throughout the development and deployment lifecycle.
• Infrastructure as Code (IaC):
• Utilize Terraform to define and provision infrastructure as code, ensuring security controls are embedded in the deployment process.
• Implement automated security checks within the IaC pipeline.
• Security Controls Implementation:
• Implement and manage security controls, encryption, and identity management within AWS environments.
• Conduct regular security assessments and audits to identify and mitigate potential risks.
• Collaboration and Communication:
• Collaborate with cross-functional teams, including developers, operations, and DevOps, to integrate security seamlessly into the development lifecycle.
• Communicate security requirements and best practices effectively to technical and non-technical stakeholders.
• Incident Response and Monitoring:
• Develop and implement incident response plans for cloud environments.
• Establish and maintain effective monitoring and alerting systems for timely detection and response to security incidents.
• Identify gaps in our security posture and prioritize remediation efforts
  
  
  

Qualifications:

• Bachelor's or Master's degree (or equivalent) in Computer Science, Information Security, or a related field.
• AWS certifications such as AWS Certified Solutions Architect Professional, AWS Certified DevOps Engineer Professional, AWS Certified Security Specialty.
• CISSP, CCSP, OSCP, GIAC, or related security certifications preferred.
• Certified Kubernetes Administrator (CKA), Certified Kubernetes Security Specialist (CKS) preferred.
• Knowledge of IL5, FedRAMP, and government cloud security standards preferred.
• Proven experience as a Cloud Security Architect in a similar capacity.
• Extensive expertise in AWS, including hands-on experience with AWS security services.
• Strong knowledge of containerization technologies such as Docker and orchestration with Kubernetes.
• Proficiency in Infrastructure as Code (IaC) using Terraform.
• Experience implementing security controls, encryption, and identity management in cloud environments.
• Familiarity with DevOps principles and integrating security into CI/CD pipelines.
• Excellent communication (written & verbal) and collaboration skills.
  
  
  

Additional Information

Min Years of Rel Exp w/Degree: 12

Minimum Degree Requirement: Bachelor's degree

Reports to: Senior Director, Information Technology & Security

Location: Arlington Office or Remote-US

Supervisory Responsibility: This position has no supervisory responsibilities.

Years of Supervisory Experience Required: N/A

Travel Requirements: This position requires minimal travel

Telecommute Option: Yes

Work Environment: This job operates in a professional office environment. This role routinely uses standard office equipment such as computers, phones, printers.

Physical Demands: This is largely a sedentary role. Physical requirements include occasional lifting/carrying of 5 pounds; visual acuity, speech and hearing; hand and eye coordination and manual dexterity necessary to operate a computer keyboard and basic office equipment. Subject to sitting, standing, reaching, walking, twisting, and kneeling to perform the essential functions. Working conditions are primarily inside an office environment.

FLSA (Fair Labor Standards Act) Status: Exempt

Compensation range is base salary of $180,000 - $225,000. The salary range information provided, reflects the anticipated base salary range for this position based on current national data. Minimums and maximums may vary based on location. Individual salary will be commensurate with skills, experience, certifications or licenses and other relevant factors. In addition, this role will be eligible to participate in either the annual performance bonus or commission program, determined by the nature of the position.

Benefits:

Comprehensive Health & Wellness package (Medical, Dental and Vision)

10 Paid Holiday Days Off

Flexible Time Off (FTO)

401(k) Employer Matching

Stock Options

Career advancement opportunities

Casual Dress

On-site gym and dedicated Peloton room at headquarters

Company Events (Sports Games, Fitness Competitions, Birthday Celebrations, Contests, Happy Hours)

Annual company party

Employee Referral Program