Cloud Security Engineer (Remote/Flexible)

Insulet started in 2000 with an idea and a mission to enable our customers to enjoy simplicity, freedom and healthier lives through the use of our Omnipod® product platform. In the last two decades we have improved the lives of hundreds of thousands of patients by using innovative technology that is wearable, waterproof, and lifestyle accommodating.

Position Overview: 
The Cloud Security Engineer will be involved in multiple aspects of supporting and managing the cybersecurity program with the goals of reducing risk and driving continuous maturity. The focus of the position will be on cloud and SaaS solutions however the opportunity to participate in all areas that the cyber security manage will be possible.

Responsibilities: 
• Collaborate with development teams and the business in the planning, implementation, and ongoing support of secure cloud infrastructure. 
• Update cloud asset inventory and security lifecycle management program
• Participate in cloud platform security risk assessments for cloud systems and identify deficiencies
• Validate in-place security configurations and conduct vulnerability assessments
• Evaluate the security posture of 3rd party application providers
• Provide cloud engineering security methodologies and threat mitigations in accordance with industry standard security frameworks such as CSA, CIS, and NIST
• Assist with security improvement program projects with cloud application stakeholders
• Respond to incidents on both cloud and on-prem applications
• Participate in external and internal penetration tests conducted by 3rd parties

Education and Experience:
• Technician or bachelor's degree in computer science, software engineering or an equivalent relevant experience
• 1-3 years of Security, Cloud Security, Product Security, Development, or relevant IT experience required 
• Strong communication and interpersonal skills. Ability to communicate ideas clearly and efficiently across technical and non-technical audiences, displays active listening skills, and communicates effectively and efficiently.
• Ability to prioritize multiple tasks and develop innovative solutions to meet project expectations without compromising good design.
• Ability to create architecture and data flow diagrams
• Excellent organizational skills and the ability to follow incidents to their conclusion
• Strong problem solving and analytical skills

Preferred Skills and Competencies:

• Knowledge of threat modeling and secure design is a plus

• Knowledge of STRIDE, PASTA, DREAD or similar threat modeling methodologies is a plus

• Knowledge of OWASP Top 10 is a plus

• Knowledge of cloud architecture patterns, concepts, distributed environments, and database technologies is a plus
• Experience with public cloud (AWS, Azure, GCP) a plus

• Experience with Wiz, Rapid7 or other commercial cloud security platform is a plus
• API security experience a plus
• IAM experience a plus 
• Solid understanding of encryption, cryptography, and secrets (key) management
 

NOTE: This position is eligible for 100% remote working arrangements (may work from home/virtually 100%; may also work hybrid on-site/virtual as desired). #LI-Remote