Sr Sr 2 I/S Engineer Cloud Security Engineering

Sr Sr 2 I/S Engineer Cloud Security Engineering

Vacancy expired!

Publix Super Markets, Inc. is the largest privately-owned food retailer in the nation with more than 1,200 stores and more than 200,000 associates throughout the Southeast. We are associate-owned, proud of our family atmosphere, and consistently named as one of the best companies to work for in America. We are largely debt-free and renowned for our financial performance as well as our premier customer service. Publix s Information Services (I/S) department is located in Lakeland, Florida and Alpharetta, Georgia and employs over 1000 associates. I/S provides the information technology required for all Publix business units including retail stores and all office and warehouse environments. The Publix I/S mission is to maximize the value of information technology to Publix associates and customers. The job responsibilities for this position are:

• serves as an Information Security Subject Matter Expert (SME) by maintaining knowledge of industry-recognized security technologies and concepts,
• provide security oversight and experience with a strong understanding of hybrid public/private cloud services, Infrastructure as Code, DevSecOps toolsets, and platforms including compute, storage, networking, containers, container orchestration, service mesh, monitoring/logging, and Continuous Integration/Continuous Deployment (CI/CD),
• assist with planning and managing project efforts to define, implement, upgrade, enhance, and maintain cloud security systems,
• create security automation for response and remediation of compliance findings and hardening of cloud infrastructure for Azure, Google Cloud Platform, and VMware,
• work with other security teams to define and build the processes necessary to protect cloud infrastructure from common threat vectors including ransomware, OWASP vulnerabilities, and security & compliance misconfigurations,
• play a key role in ensuring our cloud capabilities meet PCI/SOX/HIPAA/PII compliance standards,
• provide security consultation and guidance on new cloud products, features, and technology decisions,
• work closely with various team members to refine and enhance the risk strategy for cloud architecture,
• actively engage and foster relationships with security champions on business and cloud teams to understand their needs and evangelize a shift-left DevSecOps culture,

The required qualifications for this position are:

• must have a bachelor s degree in Management Information Systems, Computer Science, Information Security or other technical/analytical disciplines, or equivalent experience,
• must have at least 2 years of experience in security engineering or DevSecOps (4 for Sr. II) working with Azure, Google Cloud Platform, VMware private cloud technology,
• deep understanding of security requirements, best practices, and execution in various cloud implementation scenarios: IaaS, PaaS, SaaS,
• demonstrated experience with Kubernetes (AKS), Docker, and/or Openshift,
• experience with automation, deployment orchestration, and security configuration management with Terraform, Chef, Puppet, YAML, JSON, PowerShell, BASH, Go, or Python,
• experience with API s and 3rd Party integrations with tools such as ServiceNow, Splunk, Tenable, etc.
• experience with hardening CI/CD pipelines, containers, container registries, and code repositories, and use of tools such as Jenkins, GitHub, Azure DevOps, etc.
• knowledge of threat modeling, static/dynamic/interactive code analysis, fuzzing, software composition analysis, secrets management, and related tools
• experience with compliance and regulatory security requirements (SOX, PCI, HIPAA),
• understanding of Agile methodologies,
• must have excellent customer service skills and commitment to teamwork,
• must have excellent written and verbal communication skills with the ability to relate to all levels of Publix associates,
• must have a high degree of confidentiality, maturity, self-motivation, commitment, and integrity and,
• must show enthusiasm, initiative, attention to detail, punctuality, pride in work, and a commitment to Publix and our mission.

The preferred qualifications for this position are:

• continued education including additional or advanced degrees in analytical, technical, or business discipline,
• 3 years of experience in in security engineering or DevSecOps (4 for Sr. II) working with Azure, Google Cloud Platform, VMware private cloud technology,
• strong interpersonal and leadership skills including experience in organizing, planning, and executing large scale, cross functional efforts,
• experience in project management and leading projects to completion,
• one or more of the following certifications: Security +, Cloud +, Microsoft Certified Azure Security Engineer Associate (MCASEA), Certified Cloud Security Professional (CCSP) and/or Certified Information Systems Security Professional (CISSP), ISSAP/ISSEP/ISSMP concentration preferred.

Employee stock ownership plan that contributes Publix stock to associates each year at no cost
An opportunity to purchase additional shares of our privately-held stock
401(k) retirement savings plan
Group health plan (with prescription benefits)
Group dental plan
Group vision plan
Sick pay
Long-term disability insurance
Company-paid life insurance (with accidental death & dismemberment benefits)
Tuition reimbursement
Vacation pay
Free hot lunches (buffet-style) at facilities with a cafeteria
Paycheck direct deposit
Credit union
Access to over 50 discount offers including discounts on computer, vehicle and wireless purchases
6 paid holidays (associates can exchange the following holidays with their manager s approval: New Year s Day, Memorial Day, Fourth of July, and Labor Day).