Senior Corporate Cyber Security Engineer

Semperis focuses on creating an employee experience that is aligned with our vision—being a Force for Good— starting with being a good workplace. Semperis is recognized as one of America’s Fastest-Growing Cybersecurity Companies on the Inc. 5000 List, a DUNS 100 top Start Up to work for and Inc. Best Workplace for multiple years.With teams around the world, you’ll be working alongside top global talent in Cybersecurity and Identity Access Management.

If you are a purpose-driven person who always sees the glass as half full, seizes opportunities, and has an urge to learn and develop your skills—we’d love to meet you.

***We are unable to sponsor, US Citizenship required.

***Dalls Hybrid. This role will be Hybrid and have in office expectation.

What we are looking for:

Semperis is seeking a Senior Corporate Cyber Security Engineer who possesses a dedication to the dynamic field of cybersecurity. If you’re detail oriented, proactive and bring a strong engineering and corporate security background to the table, we invite you to apply to our team!

This role requires over 5 years of proven experience in Cyber Security, securing cloud applications, infrastructure and networks and demonstrating a strong expertise in corporate security use cases, tools and methodologies. A strong focus on Azure and AWS environments is required.

What you will be doing:

As the Senior Corporate Security Engineer at Semperis, you’ll hold a crucial role in ensuring our adoption of SaaS and Cloud providers’ tools and infrastructure adheres to industry leading standards such as SOC Type 2, NIST and HIPAA, while aligning with organizational policies.

• Identify, assess and prioritize security risks across the organization. Develop and implement strategies to mitigate identified risks, reducing the organization's exposure to potential threats.

• Implement business focused controls to safeguard Semperis cloud entities, accounts and services- mainly hosted in Azure and AWS clouds.

• Design and implement DLP strategies to protect sensitive data across the organization. Monitor, detect and respond to insider threats using advanced tools and methodologies.

• Advise on secure architecture across infrastructure, applications and operational technology to ensure robust security for cloud infrastructure, networks and applications including services and components like Azure Kubernetes Service (AKS), Azure Web Apps, Application Gateways, Web Application Firewalls (WAFs), ISTIO, Network Security Groups (NSGs), and Azure Firewall.

• Implement security best practices for containerized environments (e.g., AKS). Enhance the security posture of web applications and APIs using best-in-class tools and methodologies.

• Work directly with the senior leaders to align the Security Operations strategy with the overall business objectives and risk management framework.

• Collaborate with the compliance team to maintain and audit security controls and processes, ensure compliance with relevant security frameworks and certifications such as SOC2 Type 2, NIST, HIPAA, and others.

• Manage B2B and B2C identity scenarios, ensuring secure collaboration and access for external users while maintaining the integrity of each tenant’s security posture.

• Establish and monitor cross-tenant access settings, ensuring minimal privilege principles are adhered to.

• Collaborate with security teams across the company to integrate threat intelligence into the organization’s incident response plans.

• Develop and refine incident response plans and playbooks to ensure timely and effective responses to security threats.

• Create and maintain comprehensive security documentation, including policies, procedures, incident response plans, risk assessments and post incident reports.

• Collaborate with with Semperis Security and Engineering teams to provide cloud controls training.

What you will bring to the table:

• Over 5 years Proven experience and proficiency in evaluating, deploying and operationalizing tools such as:

  o CNAPP- Cloud Native Application Protection Platform solutions. Implementation and Administration

  o IaC- infrastructure as code- ARM/BICEP and/or Terraform

  o SIEM- preferably MSFT Sentinel

  o SOC- implement and improve automation, incident response and observability

• Azure Specific Security knowledge- Azure security center, policy and blueprints, Azure Key Vault including integration with AKS and other services

• O365 compliance and security- including Entra ID governance and protection, endpoints protection and vulnerability management

• Strong understanding of DevOps and Agile Methodologies

• Compliance and regulatory knowledge- GDPR, HIPAA, PCI-DSS

• You are an automation enthusiast- A passion for automation with the ability to identify workflow improvements and scalable tools

• Proficiency in cloud infrastructure automation

• Scripting proficiency in languages like Python and Powershell

• Knowledge in evaluating, deploying and operationalizing tools such as SOAR, XDR, UEBA, IAM, CSPM, DSPM

• Azure DevOps Security- Secure CI/CD pipelines, security integration into the DevOps lifecycle and dependency scanning within Azure DevOps pipelines

#LI-AO1

#LI- Hybrid

**Semperis maintains office locations in several cities across the globe. Candidates who reside within 45 miles of one of our offices—or where the job description specifies a required location—will follow our hybrid work model. This includes working onsite three days per week and remotely the remaining days.