Cloud Security Engineer
San Francisco, CA

Job Description

As a part of our technology organization, GapTech, you will have the opportunity to support the teams that are building the next generation solutions that will transform the way our customers interact with our family of iconic brands. Our team is on the path towards a DevOps model, allowing our product teams to have full ownership of design, build and operate with immense scale.

GapTech Information Security (InfoSec) is the global cybersecurity division of Gap Inc. inclusive of, and across, all our brands. As a Cloud Security Engineer you will have the opportunity to design, build, maintain, automate, and integrate cloud tools in our robust security portfolio.

This is a hands-on, dynamic, security engineering role where you'll have the chance to dig deep into our security tools and take the lead on bringing enhancements, new releases, and process efficiencies to the team for maximum delivery of security capabilities.

This role brings a true engineering mindset to the team by building in automation and processes optimization where possible.

The Cloud Security Engineer will be joining a global team reporting to the Director of Cloud SecOps and will be key to enabling security self-sufficiency across our DevOps organization by helping design, deploy, and operate solutions that strengthen our security capabilities.

* Use your strong programming and scripting skills to build in automation to our security toolkit and practices


* Work closely with DevOps and Cloud migration teams to integrate native and 3rd party cloud security capabilities into their development practices


* Write and review scripts, templates, interfaces and utility applications to continuously improve functionality


* Develop a DevSecOps culture by providing knowledge of solutions and expertise within multiple Cloud technologies.


* Design and implement Cloud service provider native or 3rd party solutions as part of security by design


* Work with our global teams to automate security operations tasks


* Recommend standards and best practices including automation, process efficiencies, and enhanced security for supported areas


* Bachelor's degree or equivalent in MIS, Computer with 6 years of relevant experience
* Demonstrated scripting ability include Python, Ruby, Java, RestAPI
* Experience with cloud automation tools such as Terraform, Kubernetes, ARM, AMI


* Experience with security toolchains embedded into CI/CD pipelines Jenkins, Artifactory, GitHub.


* Experience with infrastructure as code through automation platforms such as Chef, Puppet, Ansible.


* Experience with securing IAAS, PAAS, hybrid, and multi-clouds a plus.


* Some level of experience in security engineering/administration will be helpful including competencies in:
* Static and Dynamic Code Analysis


* Threat Modeling and Threat Detection Tools


* Security Incident and Event Management (SIEM)


* Anti-malware, FIM, HIDS


* Identity and Access Management Tools


* Data Encryption, Tokenization, Minimization and Cryptography




* Must possess excellent communication skills and be able to communicate with a variety of technical teams and positions