Cloud Security Engineer

Univers provides the world’s most comprehensive decarbonization system.

We help companies and countries optimize energy systems and reduce carbon emissions with accurate, reliable, and actionable decarbonization data.

Our EnOS (Energy and Environment Operating System) platform connects on-the-ground operational technology and in-the-cloud intelligence to deliver real-time energy data and data-driven carbon monitoring, reporting, and abatement.

With 220 million sensors and smart devices connected, 550GW of renewable energy under management, and a community of over 500 customers, we’re helping the world’s leading businesses get the world to net zero—and what comes after it.

Responsibilities:

1. Consult with stakeholders on security requirements and utilize best practices to meet them.
2. Collaborate with the Cloud Infrastructure and Platform teams to lead initiatives and build security utilities that will enable Univers to operate more securely.
3. Build threat detection for a hybrid infrastructure covering the overall technology stack that includes Application infrastructure, Containers, IoT infrastructure.
4. Contribute to and lead communications with the team and other business units.
5. Build and maintain a robust infrastructure/platform security roadmap to meet customer demands and regulatory mandates.
6. Respond promptly and in detail to customer-sponsored penetration tests.
7. Develop, maintain, and promote standards through workshops, knowledge shares, and brown bags.
8. Promote security and cloud best practices.
9. Onboard and develop Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response system (SOAR).

Qualifications & Experience:

1. Bachelor's degree in computer engineering / STEM.
2. AZ-500 & AWS security certification will be a plus.
3. At least 5+ years of experience in security controls management aspects at Azure/AWS/Google cloud.
4. Strong knowledge of network security including Firewall and WAF.
5. Strong knowledge of Identity management and identity federation (SAML, Oauth).
6. Strong knowledge of virtual infrastructure and containerization technologies.
7. Experience designing and implementing security controls in cloud platforms such as AWS, Azure and alike.
8. Experience with the application of risk identification and evaluation techniques.
9. Experience with a broad set of information security technologies and processes within a SaaS, IaaS, PaaS, or cloud environment.
10. Experience with at least one SIEM and SOAR platform – including onboarding of log sources and developing automation.
11. Scripting (mostly in Python) and/or automation skills will be a plus.