Senior Staff Cloud Security Engineer

About Us:

SentinelOne is defining the future of cybersecurity through our XDR platform that automatically prevents, detects, and responds to threats in real-time. Singularity XDR ingests data and leverages our patented AI models to deliver autonomous protection. With SentinelOne, organizations gain full transparency into everything happening across the network at machine speed – to defeat every attack, at every stage of the threat lifecycle.

We are a values-driven team where names are known, results are rewarded, and friendships are formed. Trust, accountability, relentlessness, ingenuity, and OneSentinel define the pillars of our collaborative and unified global culture. We're looking for people that will drive team success and collaboration across SentinelOne. If you’re enthusiastic about innovative approaches to problem-solving, we would love to speak with you about joining our team!

What are we looking for?

We are looking for a detail-oriented and proactive candidate who loves Security and is familiar with DevOps/SRE principles with excellent communication skills to help secure SentinelOne’s cloud services and offerings.

What will you do?

• Implement and maintain our cloud security architecture, policies, and automation
• Drive cloud security solutions within our existing architecture frameworks (e.g. credential management, access provisioning, authentication and authorization, data security, network security, application security, infrastructure security, security monitoring, and operational security)
• Writing tools and scripts to automatically remediate known issues and other security automation needs
• Perform day-to-day security tasks within AWS, GCP, Azure, and other future cloud environments, including managing firewalls, organizational policies, reviewing logs, modifying IAM, and anything else required to secure our clouds
• Guide SentinelOne in larger architecture plans within all current and future cloud environments
• Promote cloud security hygiene that conforms to existing security and compliance requirements such as SOC II and FedRAMP
• Report cloud security risks to all relevant stakeholders, including the identification and implementation of solutions to reduce our cloud security risk and exposure
• Stay up-to-date on the latest threats and the changes to cloud offerings and other tools to counter those dangers
• Be a security champion throughout the organization by encouraging security awareness and implementing best practices through developing and facilitating internal training materials
• Elevate and guide the existing Information Security team with your background and knowledge of proven security solutions
• Promote and develop a culture of high performance by automating infrastructure provisioning, deployments, and management processes by using Infrastructure as Code (IaC) tools such as Terraform, Pulumi, CloudFormation, and Helm
• Advise and collaborate with the rest of the Information Security team and Engineering groups in building the future of SentinelOne
• Communicate with management and peers by creating and tracking KPIs or OKRs

What skills and knowledge should you bring?

• 7+ years of experience supporting a cloud-based SaaS in an InfoSec capacity and or an operational capacity, like DevOps/SRE/Security Engineering with at least one year of experience with primarily security duties
• 5+ years working with one of our main cloud providers (AWS, GCP, Azure)
• Strong knowledge of cloud basics in the following areas: Compute, IAM, KMS, VPC, Networking, Firewalls, and native cloud security tools (e.g. AWS GuardDuty, CloudTrail, Shield, etc; GCP Secret Manager, Cloud Audit Logs, etc)
• Experience designing scalable and secure cloud networks in a multi-region environment
• Understanding of Infrastructure as Code industry best practices and how to implement them (Terraform, Pulumi, CloudFormation, Helm, etc)
• Proficiency in one or more programming languages, such as Python
• Knowledge of cloud deployment pipelines, and applied experience with Agile Software Development Life Cycle practices
• Practical knowledge of what it means to validate that an environment is meeting all security and compliance controls including assembling reports, gathering evidence, creating diagrams, and otherwise assisting with the audit process

Preferred:

• Experience with containers and microservices such as Kubernetes, EKS, GKE, and ECS
• Experience with Serverless technologies like Lambda and Cloud Functions/Cloud Run
• AWS Certified Solutions Architect, AWS Certified SysOps, AWS Certified Advanced Networking Specialty, AWS Certified Security Specialty, Azure AZ-500, Google Professional Cloud Security Engineer, and/or CISSP
• CNCF CKA and/or CKS
• Experience operating under regulatory frameworks such as FedRAMP, SOC II, and ISO 27001

Why us?

You will be joining a cutting-edge company where you will tackle extraordinary challenges and work with the very best in the industry.

• Medical, Vision, Dental, 401(k), Commuter, Health and Dependent FSA
• Unlimited PTO
• Industry-leading gender-neutral parental leave
• Paid Company Holidays
• Paid Sick Time
• Employee stock purchase program
• Disability and life insurance
• Employee assistance program
• Gym membership reimbursement
• Cell phone reimbursement
• Numerous company-sponsored events, including regular happy hours and team-building events

SentinelOne is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.

SentinelOne participates in the E-Verify Program for all U.S. based roles.