Cloud Security Engineer, Development Infrastructure

Jerusalem, Israel
Software
Full time

The position

Which department will you join? 
The Development Infrastructure (DI) department is an R&D group that develops and maintains tools, services, and systems used by Mobileye's entire R&D organization. From CI/CD to data labeling, Batch processing to GPU based ML/DNN, we provide the infrastructure on which Mobileye is able to create our core technologies of Advanced Driver Assist, Mapping, and Autonomous Vehicles. We focus on technology, reliability and usability - all this at exceptionally large scales of compute, storage, code-base, data and more. 
 
The Cloud team of the DI department maintains Mobileye's Cloud infrastructure on Amazon Web Services. We maintain tens of Petabytes of storage, we process hundreds of Petabytes of data monthly, and provide networking, security, governance, guidance, and support for all of Mobileye's diverse uses of AWS across tens of AWS accounts (and growing!). 
 

What will your job look like?

  • Continuous communication with the Cyber-Defence team for identifying and solving security concerns. Define, plan, and execute deployments of security solutions as infrastructure-as-code, security-automation, embedding of security-controls in CI/CD pipelines, monitoring solutions, and optimizing the security of our cloud environments.  
  • The Cloud Security Engineer will be responsible for deploying and running security tools, mechanisms, scripts and processes to allow for continued security-posture of the development and production AWS cloud environments. In the event of a security-issue, the Cloud Security Engineer will be pivotal in implementing remediation measures. 

Requirements:

  • Full professional and vast hands-on experience with the followings: 
  • Installation, configuration, fine-tuning, monitoring, creation-of-handling processes/scripts/Lambdas - for vulnerability and compliance scans using industry standard security scanning tools 
  • AWS Cloud infrastructure including but not limited to S3, VPC, EC2, RDS, IAM, ELBs, Route53, Lambda, ECR, ECS, Batch, along with AWS security tools: Security Hub, GuardDuty, CloudTrail, VPC FlowLogs, Inspector, IAM Analyzer, Trusted Advisor, AWS KMS, AWS Artifact, AWS Shield, Macie, AWS-Config 
  • Linux hardening, Networking and Containers (Docker) 
  • Infrastructure-as-code (Terraform, CloudFormation) using Git 
  • Open-source web technologies, databases, and caching layers 
  • Networking, Firewalls, Security Groups, NACLs, AWS Private Links 
  • Development using Python, Shell 

All you need is:

  • Ability to self-operate and with independence and ownership in mind 
  • A team player who contributes new initiatives and cutting-edge ideas 
  • Excellent verbal and written communication skills and the ability to interact professionally with a diverse group of developers, product owners, and subject matter experts 

Advantages:

  • Some knowledge and experience with the followings: 
  • Microservices orchestrations, Kubernetes 
  • CI/CD, Jenkins, Gitflow, GitOps methodologies 
  • Security certifications such as CISSP, CISM, CCSP 
  • Big data: Athena, Elasticsearch 
  • High-scale production environments 

Mobileye changes the way we drive, from preventing accidents to semi and fully autonomous vehicles. If you are an excellent, bright, hands-on person with a passion to make a difference come to lead the revolution!