Cloud Security Engineer

Gatekeeper is a SaaS-based, next-generation Vendor & Contract Lifecycle Management (VCLM) & Third Party Lifecycle Management (TPRM) Solution. We help our customers to restore visibility of their vendor contracts, take control of their vendor and contract processes and safeguard compliance of their third parties.

Gatekeeper has consistently achieved significant, profitable growth YoY with long-term customers including Ford, Accor, Roche, The Telegraph, Autotrader, Tesco and Pokemon. 

With our expanding global footprint, we are looking for a dedicated Cloud Security Engineer to join our Product team. This role is pivotal in fortifying our infrastructure against potential threats, ensuring robust performance, and overseeing security monitoring - all in support of our top-tier contract and vendor management platform.

Note: This is a fully remote position and can be based anywhere in the UK/Europe

In this role you will:

• Work in a cross-functional, agile team to lead security system design and deployment 

• Be the primary point of contact for our external DevOps agency for Infrastructure Security Design 

• Devise solutions across numerous domains such as monitoring, performance, and deployment tooling

• Introduce cutting-edge technologies and methodologies, championing their integration when beneficial

• Engage in engineering dialogues to pinpoint infrastructure needs that address intricate business scenarios

• Create and update all essential infrastructure and operational documentation

• Stay vigilant about potential security threats, overseeing penetration testing

• Advocate for cost-saving measures via service optimisations

• Elevate monitoring and application performance metrics

• Oversee the Infosec qualification process as mandated by Gatekeeper's customers and prospective customers

About you

• Are you comfortable in a fast-paced, agile environment, managing multiple initiatives simultaneously?

• Are you a natural team player and lifelong learner?

• Are you empathetic, with attention to detail and an eye for problem-solving?

If this sounds like you, then please read on….

• A minimum of 5 years’ hands-on experience in a Cloud Security Engineer role, focusing on security best practices, threat detection, and mitigation strategies

• Deep understanding of AWS platform architecture, specifically tailored for SaaS solutions like Gatekeeper, ensuring optimal security postures

• Comprehensive knowledge of Linux system administration, with a keen emphasis on cutting-edge server security protocols and practices

• Proficiency in deploying and managing security systems, with a particular emphasis on Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS)

• Proven track record of ensuring data confidentiality, integrity, and availability throughout its lifecycle - during transmission, storage, and processing

• Skilled in leveraging application monitoring tools like AWS monitoring/alerts, Cloudwatch, Prometheus, and Grafana to detect and respond to security incidents

• Familiarity with databases and search engines such as ElasticSearch, Postgresql, and Redis, with an emphasis on securing them

• Demonstrable knowledge of Disaster Recovery procedures and strategies to guarantee business continuity in the face of threats and outages

• Exceptional written and verbal communication skills in English, capable of conveying complex security topics in an understandable manner

• A positive, team-first attitude complemented by a good sense of humour, committed to fostering a collaborative security culture

• AWS Certified DevOps Engineer or AWS Certified Security - a specialty certification would be highly advantageous

• Familiarity with security compliance standards relevant to the SaaS industry, such as GDPR, ISO 27001, and SOC2

• A proactive approach to staying updated with the latest security threats, vulnerabilities, and mitigation techniques

• Experience in collaborating with cross-functional teams to embed security throughout the software development lifecycle

• Strong analytical and problem-solving skills, critical for assessing potential threats and devising effective countermeasure

Do not apply for this job if:

• You ever consider mediocrity acceptable

• You need to be told what to do

• You want to be the smartest person in the (virtual) room

• Don’t like working with the best and learning something new

• You have an ego bigger than your sense of humour

• Generous remuneration

• Flexible working hours: design your work schedule to match your lifestyle

• 100% remote working: live and work wherever you like - no more commutes

• Generous holiday policy

• Monthly health and wellbeing perk to cover health/dental insurance

• Learning & Development opportunities for lifelong learners

• Technology: we provide everything you need to do your best work

• Gatekeeper for Good: Match funding to support non-profit organisations in your local community

• Gatekeeper retreat

We live by our company vision and values. If these ring true to you, then we’d like to talk to you.

Gatekeeper offers a diverse and multicultural working environment, currently spanning 18 countries. We respect each other’s differences and welcome candidates from all backgrounds.

A market-leading product, a skilled and supportive team and distinctive values make Gatekeeper a uniquely rewarding place to work. 

We’re proud of the company we’re building and we’d love for you to be part of it.