Sofia, Bulgaria | Full Time
Do you want to work at the forefront of technologies?
HeleCloud™ is a fast-growing technology consultancy and managed services business focused on the AWS platform. We take our clients on a complete journey into the Cloud and work closely with businesses to develop a Cloud roadmap, ensuring that their transition into the Cloud is smooth, secure, and adds value to the cost-efficient. We don’t just stop at making technology work for our clients, we ensure that their teams also understand the Cloud as well as we do and can make the most of it. We operate across EMEA with offices in the Netherlands, UK and Bulgaria. We are expanding our teams with AWS Cloud Security Engineers.
We are a bunch of cloud and automation enthusiasts helping customers benefit from using the cloud. Since AWS changes every day and each customer is different, we spend a lot of time learning new technologies. Some of us work on all customer environments, while others are focused on 2-3 customers primarily. We have a daily stand-up to keep in sync, and a balcony (virtual as well) where we have coffee with our teammates over non-work conversations and jokes. We take great pride in our sense of humor!
We live and breathe Infrastructure as Code, so we have a close relationship with Terraform, Ansible, Python, and Bash and a slightly more distant relationship with CloudFormation and PowerShell. We use the Atlassian Stack for ticket, source code, and documentation management.
You will be working with our customers on mid to long-term engagements striving to gain detailed knowledge of their environments and becoming their trusted adviser on all aspects of the security of their workload. You will be constantly researching developments in the field of security and AWS and applying your expertise to reduce risk.
Your main playground will be an ELK-based SIEM where you will analyze findings and come up with improvement opportunities within data ingestion and augmentation, dashboards, saved searches, alarms, etc. You will need to keep updated on the latest vulnerabilities, threats and hacks so you can adjust the SIEM accordingly. You would be the person maintaining all compliance checks in AWS SecurityHub and Audit Manager and dashboards in Kibana, ensuring customers are always compliant.
We will be relying on you to raise awareness on potential security improvements in our day-to-day operations so that we continue to move security left. You will also organise and deliver security gamedays to test the team’s readiness for security incident response and resolution and take part in Security Assessment and Remediation projects.
You have a passion for security and won’t shut up about it. Security in the cloud is a concept that gets you excited. You’ve already done security administration in conventional data centre environments with Linux and Windows servers, networking, middleware and the like. You have dipped your toes in at least one scripting or programming language and can read and edit code written by someone else as minimum.
You are an analytical thinker with a strong problem-solving attitude. You like a good challenge and can’t imagine working somewhere where you follow Standard Operating Procedures and KB articles 8 hours a day. Learning is like breathing to you and you firmly believe that you’re as good as dead if you stop keeping up with the latest in security.
You enjoy helping customers and colleagues alike because security needs to be understood before it can be implemented.
The below skills will make you successful at this job but we don’t expect to find all of them in every candidate. Except English – we totally expect that from everyone.
- Strong research background, utilizing an analytical approach;
- Experience in working with compliance and regulatory requirements such as CIS, PCI/DSS, GDPR, HIPAA, SOC, etc.;
- Developing, maintaining, administering, upgrading SIEM platforms, preferably on the ELK stack;
- Scripting knowledge, Python, Bash, Powershell etc.;
- Experience with securing cloud environments on Amazon Web Services (AWS) will be considered a strong advantage;
- Knowledge of enterprise logging, with a focus on security event logging;
- Experience in security administration and/or operations;
- Good understanding of threat modelling, attack and penetration test remediations;
- Very good English;