Azure Cloud Engineer

We are looking for an outstanding Azure Cloud Security Engineer to be based remotely, from the Czech Republic or across EMEA to join our team. As a Azure Cloud Security Engineer you will be part of a multi-disciplinary engineering team that is responsible for the research, development, and maintenance of security compliance and vulnerability rules and signatures for Runecast Platform.

The role involves tracking capabilities of new and existing public cloud services and understanding how they can be exploited, and mapping industry-standard compliance standards onto public cloud infrastructure, to provide customers insight into cloud hygiene and compliance. In this team you will be mainly responsible for public cloud platforms, but you will have exposure and opportunities to work on other technologies: Kubernetes, VMware, Windows, Linux. 

Key Responsibilities

• Research and Develop signatures to identify non-compliant configuration settings in the area of public cloud services, covering the requirements of regulatory compliance profiles such as CIS, PCI-DSS, NIST and newly reported vulnerabilities.
• Provide subject matter expertise to internal core engineering and development teams to leverage SDKs and APIs in order to interact with the public cloud services.
• Maintain the development and test infrastructure and quickly set up new disposable environments for testing and development.
• Participate in technical support cases for timely resolution of issues and for problem reproduction and escalation.
• For the most critical vulnerabilities and exploits, help prepare knowledgebase articles or blog posts detailing the findings and impact.

Skills Knowledge and Expertise

• Research mindset, with a hold on where to look for relevant information about threats, vulnerabilities and security compliance requirements.
• Ability to communicate, collaborate, and work effectively in a distributed team.
• Good knowledge and understanding of main Azure cloud services(AKS, App Services, Azure AD, Key Vault, Network Security, SQL Server, Storage Account, Virtual Machine)
• Experience with the operations of large Azure cloud production environments.
• Proficient in powershell and comfortable using APIs.

Bonus Points:

• Working experience on UNIX/Linux, other public clouds (AWS, GCP), Kubernetes.
• Worked in a relevant position of IT security risk/vulnerability management;
• Familiarity with common compliance standards, such as CIS Benchmarks, PCI-DSS and HIPAA.

Benefits

• Join us in our Brno office or work from home - We have an office in Brno, although many of us are working from home at the moment. We also have people working remotely from all over the world.
• Friendly people and great co-founders - People are often mentioned as one of the reasons why we love working at Runecast. Everyone is very friendly, and there is nothing easier than getting in touch with one of the co-founders, as they work among us.
• We are a truly international team - Our HQ is in London, but our Operations HQ is Brno - and many of us are working remotely around the world.
• Being part of a growing company, where things feel like a start-up - We are not big on a ten-step process just to get approval for one tiny change. We are all working together and we value input from everyone.
• Flexible working hours - We don’t care about clocking in and out at specific times. Some of us prefer to work early in the morning, others start later in the day.
• Paid therapy sessions - Mental health is paramount. Speak to a therapist whenever you need to, Runecast will contribute financially to the sessions.
• Monthly Contributions towards Health Benefits - Health is important and Runecast provides all employees with a monthly allowance to spend on health benefits.
• Further education and certifications - We'll cover the cost so we can help you enhance your career and skills here at Runecast.

Are you interested in Runecast? Send your CV to hiring@runecast.com