Platform Security Engineer
Our Story: Litera, headquartered in Chicago, IL, is a fast-growing software company and one of the leading legal technology suppliers in the world. Serving more than 90% of the world's largest law firms, our software is used by hundreds of thousands of lawyers every day. As a company recognized as one of the best places to work, we believe professional development, rewards programs, open communication, and transparent leadership all contribute to a unique and open work environment. Our employees are driven, energetic, passionate, and have the ability to make a direct impact on the future of the company.
The Opportunity
You will be part of an energetic and dynamic team of information security and IT professionals supporting a global business and customer base. You will provide the technical expertise and driving execution that will secure and defend our fast-paced software development and SaaS business from global threats. The Cloud Security Engineer/ Platform Security Engineer will report to the Manager, Security Operations and own Litera’s cloud security architecture, defense, and evolution.
Key Responsibilities & A Day in the Life
- Work cross functionally to design, lead, and execute on cloud security projects to improve our existing security and compliance posture
- Continuously analyze the security profile of our cloud applications and infrastructure and drive tailored and best practice cloud security configurations and design
- Manage the penetration and vulnerability testing and remediation program for our cloud estate
- Select and implement security and alerting tools and then drive business action based on empirical data and your expertise
- Advance the business’s secure software development lifecycle for cloud application by establishing and improving security practices for secure API integration, vulnerability mitigation, privileged access management, secrets management and encryption
- Mentor team members and upskill other engineers in DevOps, internal IT and engineering on cloud infrastructure and application security best practices
- Work with the internal GRC team to identify, report, track and remediate cloud security risks and control deficiencies
About you:
- Curiosity, strong initiative, drive and self-direction
- Comfort with change and a fast-paced environment
- Relentless attention to detail
- Ability to influence and persuade
www.litera.com
What you Bring
- 5+ years any Cloud application security experience (Azure/AWS Clouds preferred) including design and implementation of security architectures for large scale workloads
- 5+ years of security remediation experience and adoption of security controls & best practices in a public cloud provider (Azure/AWS Cloud preferred)
- 2+ years of experience working with Infrastructure as Code and DevOps culture and principles
- 2+ years of experience using Kubernetes, Dockers, Containers
- 2+ years of experience with infrastructure automation for continuous integration and continuous deployment of technical solutions leveraging Terraform and Ansible
- Deep knowledge of IAM, data protection, transport, perimeter, gateway, and end-point security models in distributed cloud environments
- Familiarity with latest trends and technologies in public cloud infrastructure, secure application development, virtual network and cloud security management
- AZ-500: Microsoft Azure Security Technologies Certification or AWS Certified Security – Specialty certifications (preferred)
What sets us apart?
- Be part of a team at a proven, fast-growing, industry-leading tech company
- Generous allocation of paid time off, and flexible work hours
- Available merit-based cash bonus plan
- Many opportunities for rewards and recognition
- Have fun with your peers while enjoying random ice cream and bagel parties, cold brew tap, keg, and an occasional ping pong game!
If you want to be part of our team, please apply today!
Attach your resume (in English)
