If you love to be entertained, there’s a good chance we’ve already met.
So, who are we?
We are Meredith Corporation, a media and marketing services company.
Our Vision is simple.
We are on the pulse of pop culture, entertainment, food, fashion and lifestyle. We deliver premium content wherever you are that is differentiated to keep you up to date and get people talking.
But enough about us; we are looking for an enthusiastic, flexible and motivated Junior Cloud Security Engineer to join our technology team in Des Moines, Iowa.
We are looking for someone who can talk with everyone and anyone, is confident in their abilities and has the tech skills to help us secure our solutions in the ever-changing media world.
Some of the things you will be doing;
Designing, building, and deploying secure and well-orchestrated automated security solutions in the cloud, using tools including CloudFormation, and Ansible.
Help us create cloud security governance policy.
Automate compliance checks to make sure teams are following the policy you helped create.
Help teams understand cybersecurity in the cloud and develop secure solutions.
Advocate for and ensure appropriate security practices are communicated to teams we partner with.
Contribute across our technology stack, you will get your hand dirty!
Learn from and share knowledge with the team. We have a positive, can-do attitude and love to learn.
What we would like you to bring;
Can you speak tech? Experience in a language (Python, Bash etc.) a must.
Knowledge of AWS infrastructure, network, security layers. Know your VPC, networks and security groups.
Understand IAM and how to secure S3, databases etc.
No fear of the AWS CLI, boto3 experience, great!
Comfortable in Linux, Windows or Mac environments.
Do you containerize your life into bite size pieces? Can you help us do that? Docker, ECS, and a little sprinkling of Kubernetes!
Comfortable with CI/CD principles and tools! Some experience to building and deploying pipelines.
We have lots of data and we want you to be able to turn it into something useful. We need this in Splunk and will need your help getting it there.
And all that with security at the front of your mind.
What catches our eye?
Current AWS experience building solutions we can delve into. Tell us about some of your projects work or personal.
Good understanding of Security best practices and Cloud security governance.
Good understanding of DevSecOps practices.
Personally, we want you to;
Be confident working from anywhere with anyone.
Work well in time critical situations.
Work well in a cross functional team environment.
Have an ability to accurately and quickly assess and resolve problems.
Operate in a professional and courteous manner.
Be an effective communicator.
Always be learning!
Essential Job Functions
Weight % Accountabilities, Actions and Expected Measurable Results
50%
Develop Security Solutions: Designing, building, deploying and supporting secure and well-orchestrated automated security solutions in the cloud using standard toolsets. Analyze existing, new, and emerging technologies for appropriateness, fit, and usability in accordance with the cloud security strategic plan. Interface with vendors to support our IT Security initiatives and operations.
15%
Policy and Compliance: Collaborate and write cloud security governance policy. Support the assigned operational activities ensuring adherence to compliance regulations and policies. Review tool output to ensure Meredith cloud security guidelines are being followed. Adhere to all policy and compliance regulations.
15%
Advocate Security: Advocate for and ensure appropriate security practices are communicated to development and engineering teams. Maintain understanding of the latest cybersecurity issues in the cloud and assist with training, knowledge transfer. Practice continuous learning. Serve as technical and functional matter expert for cloud security domains, raising awareness and communicating security risks within the company.
10%
Security Operations: Performs daily operations and execution of security-related tools, processes and controls related to cloud security. Support COTS, SaaS and custom cloud security solutions. Help drive remediation of identified risks and control deficiencies. Supports and participates in incident response and technical investigations, as needed.
10%
Other duties as assigned.
100%
Minimum Qualifications and Job Requirements | All must be met to be considered.
Education:
Bachelor’s Degree in Computer Science, Engineering or equivalent education and experience. Industry security certification a plus.
Experience:
A Bachelor’s degree or 2 years industry experience. Professional or personal experience building solutions for and in AWS, Azure and/or GCP.
Specific Knowledge, Skills and Abilities:
Understand Security best practices and Cloud security governance.
Understand cloud security controls.
Understand IT security principles, frameworks and tools like NIST, CIS, OWASP top 10, SANS top 25.
Knowledge of AWS infrastructure, network, security layers.
Experience in various scripting and programming language (Python, Bash etc.)
Experience with the AWS CLI, boto3.
Understand understanding of DevSecOps practices. Including experience with CI/CD.
Experience with containers (Docker, ECS, Kubernetes)
Understand Linux, Windows and Mac environments.
Experience with SEIM tools (Splunk)
Self-motivated and passionate about continuous improvement of security and development practices
Ability to work cooperatively and professionally with co-workers, customers and management
Professional and courteous with strong verbal and written communication skills in order to interact effectively at all levels of the organization
Self-motivated and passionate about continuous improvement of security and development practices
Good decision-making skills
Work well in time critical situations.
Work well in a cross functional team environment.
Able to accurately and quickly assess and resolve problems.
% Travel Required (Approximate): <5%