Cloud Security Engineer

Israel - Ramat-Gan · Full-time · Mid

About The Position

We’re looking for an experienced Cloud Security Engineer to join our team and verify that our cloud environments and CI/CD flows are secured according to best practices.

As a Cloud Security Engineer, you’ll lead Elementor’s security efforts around our dynamic and fast-paced production environments. You’ll define and create operation tools and processes and play a hands-on role in directly impacting work across all R&D flows.

Work Environment

What do we do?

Elementor is the leading website-building platform for WordPress professionals.

Our vision is to empower web creators - developers, designers, and marketers - to create their futures, one pixel at a time. We provide our users with everything they need to become successful web creators.

A new website is created every 10 seconds using Elementor! 

Since launching in Israel in 2016, we’ve expanded to more than 150 countries, with 16M+ websites powered by Elementor. About 10% of all websites around the world are built using Elementor!

How do we do it?

At Elementor, we're building the future of web creation. We’re all about empowering our employees as well as our users.

Elementor is a place where you can truly grow. We encourage professional development and personal growth. Creativity, friendship, curiosity, motivation, and professionalism are the driving force behind our journey.

We take great pride in Elementor's constant scaling.


Our shiny podcast “Elementalks” will give you a glimpse behind the scenes of the various teams at Elementor!

Who are the people working here? What is the best way to integrate into a specific team? Click here for all the episodes and find out.

https://elementor.careers/elementalks/


Elementor’s R&D department is where big ideas shape the digital landscape and make a difference for Web Creators worldwide.Our developers and engineers are at the forefront of cutting-edge Internet technology, delivering innovative solutions that reach and impact millions of people at the speed of the web!We constantly seek brilliant minds to join our R&D team to collaborate, learn, and grow together. We’re working with React, NodeJS, PHP, GCP, Kubernetes, AWS, Airflow, and more.

As a dynamic and agile organization, we love meeting new challenges and pushing boundaries to inspire creative ideas.So, If you’re ready to embark on an exciting journey, join our talented R&D team and make your mark in the ever-evolving world of web creation.

Responsibilities

  • Secure and monitor live production environments.
  • Perform security drill-downs and investigations.
  • Act as a subject matter expert and manage security incidents across all organizational environments. 
  • Implement monitoring and alerting procedures and mechanisms.
  • Design and implement automation processes for security monitoring and incident response-related flows.
  • Design, implement, and develop security solutions according to R&D/production needs.
  • Work with Elementor’s R&D teams and architects to design, enhance, and implement best-of-breed security topologies.
  • Identify new security threats, and trends by conducting continuous monitoring, vulnerability assessments, and log analyses.
  • Conduct regular internal and external security assessments, vulnerability scans, and penetration testing of systems and applications to identify and remediate security weaknesses and threats.
  • Manage Elementor’s bug bounty program.
  • Maintain documentation of security processes, procedures, and configurations.
  • Generate regular reports on security metrics, compliance, and incident response activities for management and stakeholders.

Requirements

Requirements:

  • 3+ years of hands-on DevOps experience in a cloud environment.
  • At least 2 years of experience with Kubernetes, containers, and serverless security.- Must
  • 1+ years of relevant industry experience in security, with a solid knowledge of information security principles and practices.
  • Experience integrating security into CI/CD pipelines- Must
  • Experience with cloud vendors such as GCP/AWS - Must
  • In-depth understanding and proven experience in security monitoring and analytics.
  • AppSec - Knowledge of SSDLC best practices around application security.
  • Strong understanding of cybersecurity and network principles.

Advantages

  • Solid understanding of security/operations infrastructure.
  • Experience with large-scale cloud infrastructures and services.
  • Experience leading integration processes for SIEM systems.
  • Experience with incident response (IR) attacks and mitigation methods.
  • Experience building tools and processes using Python or Go to address security-related needs.
  • Experience running forensic investigations.
  • Experience with penetration testing or security research.

Podcast

Our shiny podcast “Elementalks” will give you a glimpse behind the scenes of the various teams at Elementor!

Who are the people working here? What is the best way to integrate into a specific team? Click here for all the episodes and find out.

https://elemn.to/elementalks

Apply for this position