Job Description:
At Pluralsight, we believe everyone should have the opportunity to create progress through technology. Everyone should have access to the skills of tomorrow. That technology can make the world a better place. Through the work we do every day, we empower the people who power our world. And we don’t let fear, egos or drama distract us from our mission. We’re adults, and we treat each other that way. We have the autonomy to do our jobs, we value transparency and trust in each other to do the right thing. We thrive in an environment with creativity around every corner, challenges that keep us on our toes, and peers who inspire us to be the best we can be. We bring different viewpoints, backgrounds and experiences, and united by our mission to advance the world’s tech workforce.
Pluralsight is looking for a Cloud Security Engineer in Product Security team to support develop, champion, and progress the security and privacy of our Cloud Infrastructure, product services and systems. This role will join the other security experts at Pluralsight, who lead engineers building and operating features, products, and services used by hundreds of millions of people around the world. This is an opportunity to do outstanding while improving the security, privacy, resilience, scalability, and maintainability of one of leading Tech Skills platforms in the world. The scope includes driving Cloud security initiatives in securing Pluralsight's Cloud Infrastructure. Working closely with DevOps and Engineering teams in mitigating cloud security vulnerabilities to improve the Cloud infrastructure security posture.
Who you’re committed to being:
-
An inquisitive, curious, problem solver who is always looking for better ways to tackle privacy problems
-
Persistent Problem-Solver - You know how to protect the business and as the business changes, you find ways to implement privacy standard methodologies in a practical way
-
An amazing communicator and effective influencer. People trust and follow you
-
You use data, compassion and good judgment to approach business and people problems
-
A self-starter. You like to understand the expected outcome, get the context, and then work entrepreneurially to get it done.
-
You enjoy researching, implementing, and encouraging security and privacy best practices
-
Organized, can be flexible, and most importantly, create solutions for any problem with a can-do attitude!
What you’ll do:
-
At least 7+ years of experience in Cloud Security
-
Experience on Wiz, or any CSPM is required.
-
Foundational security engineering experience in AWS or GCP, or Azure; working with container and Kubernetes-based infrastructure
-
Having experience in Cloud security posture management (CSPM) / cloud workload protection platform support
-
Building and executing threat modeling, security design review, and implementation review programs for complex, multi-tenant systems hosted in cloud environments
-
Experience reviewing and confirming Cloud Security vulnerabilities.
-
Practical experience deploying resources in Azure or AWS using infrastructure as code in a DevOps environment.
-
Ability to write lambda functions when needed.
-
Review Cloud Security findings in Wiz and improve the security posture by working with Engineering and DevOps in remediating the vulnerabilities.
-
Meet with engineering teams to explain how to fix a cloud security vulnerability
-
Make recommendations for the prioritisation of vulnerability findings based on exploitability and risk it poses to the environment
-
Identify and help mitigating security issues, misconfigurations, and vulnerabilities related to the Wiz cloud, container, and Kubernetes infrastructure
-
Collaborate with engineering, DevOps, and IT teams to ensure security is at the heart of what we do
-
Mentor and provide technical leadership to other members of the Security team
Experience you’ll bring:
-
Requires a minimum of 9+ years of related or equivalent experience;
-
Graduate level education required.
-
Experience in securing AWS Cloud services like EC2, RDS, S3 etc
-
Experience in Cloud security posture management (CSPM) / cloud workload protection platform support
-
Ability to write automation scripts, lambda functions will be a plus
-
Excellent interpersonal skills, ability to partner with product and design, and collaborate on multi-functional teams
-
You have shown you are a strong collaborator, a trusted teammate, and are skilled at resolving and working through different ideas.
Requirements:
-
Requires a minimum of 8+ years of related or equivalent experience,
-
Proficiency with Teraform, DevOps, and AWS Cloud service security.
Travel Requirements:
While Pluralsight operates under a remote and hybrid work model, we believe that in-person connection and collaboration are important. Recurring travel to our HQ in Utah may be required depending on the role and team member location.
Why you’ll love working here:
-
We’re remote-friendly
-
We’re mission driven and guided by our culture pillars
-
We have a strong commitment to diversity and belonging
-
We cultivate a culture of trust, autonomy, and collaboration
-
We’re lifelong learners and champion team member growth and advancement
-
We’ve got you covered - team member benefits include competitive compensation packages, medical coverage, unlimited PTO and Summer Fridays, wellness reimbursements, Pluralsight subscription, professional development funds and more.
About us:
We’re Pluralsight, the technology workforce development company that helps teams build better by knowing more and working better together. Using our Skills, Flow, and Cloud products, teams can develop critical skills, improve processes and gain data-driven insights.
Learning and development are at the core of who we are. We’re out to help every technologist build better, and we’re looking for curious, talented people to help us inspire and empower the tech workforce to achieve their goals. Our culture of autonomy, continuous learning, and collaboration creates an environment for growth and empowers us to drive impact through innovation.
Physical and Mental Requirements:
Work is performed in an office (or home office) environment and requires the ability to operate office equipment and keyboards. Sedentary work. Repetitive work. Ability to perform tasks related to documentation, data analysis, transcription and extensive content analysis. Learn new tasks, remember processes, complete tasks independently, and make timely decisions in the context of a workflow.
EEOC Statement:
Bring yourself. Pluralsight is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability, age or protected veteran status. Pluralsight will also consider for employment qualified applicants with criminal histories in a manner consistent with EEOC guidelines and applicable local law.
We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please visit the bottom of our website to learn how to request an accommodation.
For more information on Pluralsight’s commitment to building a more diverse and inclusive workforce, please review our most recent Diversity, Equity, Inclusion and Belonging report here.
#LI-JG1
#LI-Hybrid
Top Skills
What We Do
Pluralsight is the leading technology workforce development organization that helps companies and teams build better products by developing critical skills, improving processes and gaining insights through data, and providing strategic skills consulting.
Why Work With Us
We’re out to help every technologist build better, and we’re looking for curious, talented people to join us in advancing the world’s technology workforce. Our culture of autonomy, continuous learning, and collaboration creates an environment for growth and empowers us to drive impact through innovation.
Gallery
Pluralsight Offices
Hybrid Workspace
Employees engage in a combination of remote and on-site work.