We are seeking a skilled Senior Linux Systems Security Engineer to lead the security, updates, and certificate management of both cloud and on-premises infrastructure. This role requires extensive expertise in Linux systems administration, security protocols, and automation, combined with the ability to collaborate effectively with cross-functional teams. The successful candidate will play a pivotal role in supporting various products hosted on these platforms, ensuring seamless and secure operations.
- Manage and maintain security updates across multiple Linux distributions, with particular focus on Amazon Linux 2023
- Oversee package management and updates for critical infrastructure components including GitLab, MySQL, NGINX, and Wazuh
- Implement and maintain email security protocols including DNS, DKIM, and SPF configurations
- Manage enterprise-wide certificate lifecycle including automated deployment using various certificate authorities and management systems
- Design and implement Zero-Trust architecture and VPN solutions
- Develop and maintain custom RPM repositories and packages
- Create and maintain automation scripts using Bash and PowerShell
- Perform security audits and implement remediation measures
- Designing, deploying, and maintaining cloud infrastructure on AWS and Azure platforms.
- Collaborating with architecture and development teams to ensure cloud solutions align with business requirements..
- Monitoring and optimizing cloud resources to ensure performance, security, and cost-efficiency
- Implementing and managing DevOps practices, including CI/CD pipelines and automation
- Staying up-to-date with industry trends and emerging technologies to recommend enhancements to the cloud infrastructure
- Bachelor’s degree in computer science, Engineering, or a related field (or equivalent work experience).
- Strong proficiency in DNS management, Cloudflare, Gitlabs and certificate management and deployment.
- Strong proficiency in Linux system administration and troubleshooting (Minimum 7 Years).
- Extensive experience with package management systems (RPM, YUM, DNF)
- Experience in implementing and managing DevOps practices and tools.
- Solid understanding of networking concepts and protocols.
- Strong knowledge of email security protocols and implementations.
- Advanced scripting abilities in Bash, Python and PowerShell.
- Experience building and maintaining custom RPM packages
- Strong communication skills to interact with both technical and non-technical stakeholders.
- Deep understanding of Zero-Trust security principles and VPN technologies
- Experience with containerization technologies (Docker, Kubernetes).
- Familiarity with infrastructure as code (IaC) tools like Terraform, Ansible, or CloudFormation.
- Knowledge of database administration (MsSQL, MySQL) is a plus.
- Strong knowledge of Cloud Infrastructure resources (AWS/Azure)
- Proven knowledge of networking concepts is essential (e.g., TCP/IP, DNS, DHCP, Subnets, Routing, and Firewalls)
- Experience in implementing 24/7/365 monitoring and detection with alerts (e.g. uptime, utilization, resources, workloads, and optimization). Use of CloudWatch, Graylog, Zabbix or other tools is essential
- Experience in deploying and implementing various Cloud or Open Source-based tools to support your operational requirements
- Experience in implementing Security best practice, such as IAM and roles, Public Clouds vs Private Zones, Least Privileges, Segregation of Duties, and Change Control, etc
- Proven experience implementing CI/CD techniques (Octopus Deploy, TeamCity, Atlassian Pipelines, Jenkins, etc.)
- Beneficial experience in promoting and architecting Serverless workloads (e.g. Lambda, API Gateway, etc.) is highly beneficial
- Experience in Docker and Kubernetes is beneficial
- Experience in migrating on-premises workloads to cloud or hosted-based environments; specifically, Windows and Database (MSSQL, PostgreSQL, or MySQL) is beneficial
- Experience in orchestration (Terraform, CloudFormation) is beneficial.