What you'd actually do

1. Incorporate secure design principles into our cloud architecture.
2. Develop isolation mechanisms (e.g. sandboxing) in collaboration with our product engineering team
3. Review security-critical configuration changes and act as Codeowner for security-critical parts of our cloud configurations (everything is IaC)
4. Audit our existing cloud environment for vulnerabilities
5. Develop policies and procedures for the secure creation and operation of our cloud environments

Skills

What the JD emphasized

• secure-by-default infrastructure
• tenant isolation
• attack surface management
• least privilege
• secure design principles
• isolation mechanisms
• security-critical configuration changes
• audit our existing cloud environment for vulnerabilities
• secure creation and operation of our cloud environments
• security engineering
• software engineering
• site reliability engineering
• networking
• operating systems
• cryptographic protocols
• Kubernetes
• common misconfigurations
• privilege escalation vectors
• weaknesses
• privilege escalation
• cloud environments
• Infrastructure as Code
• Kubernetes Admission Controllers
• policy enforcement