Senior Security Cloud Engineer

   

This role has been designed as ‘’Onsite’ with an expectation that you will primarily work from an HPE office.

Job Description:

     

• Security Architecture & Engineering: Design, develop, and maintain secure systems, ensuring compliance with best practices in application, cloud, and infrastructure security.
• Threat Modeling & Risk Assessment: Identify potential vulnerabilities and risks across the system, applications, and services. Conduct threat modeling, security reviews, and risk assessments.
• Secure Development Practices: Define and promote secure coding standards (OWASP, SANS, etc.) across engineering teams, including code review with a security-first mindset.
• Security Tooling & Automation: Develop and integrate security tools for static analysis, vulnerability scanning, and threat detection in CI/CD pipelines.
• Incident Response & Mitigation: Lead investigations and incident response for security breaches. Collaborate with relevant teams to resolve issues and document findings.
• Mentorship & Leadership: Mentor engineers on security best practices, conduct security training, and promote security awareness throughout the organization.
• Cross-Functional Collaboration: Work closely with engineering, DevOps, compliance, and product teams to ensure security is embedded in every phase of the SDLC.
• Agile Participation: Participate in Agile ceremonies while championing secure software delivery within sprints and releases.

Required Skills & Qualifications

• Experience: 5+ years in application, cloud, or infrastructure security, preferably with a background in software engineering.
• Security Expertise: In-depth knowledge of application security, cloud security (AWS, Azure, GCP), network security, and container security.
• Programming Languages: Proficiency in one or more languages such as Golang or .NET.
• Security Standards: Deep familiarity with frameworks and standards such as OWASP, NIST, ISO 27001, CIS Benchmarks.
• Security Tools: Experience with tools like Snyk, Checkmarx, Nessus, Burp Suite, or equivalent vulnerability scanning and penetration testing tools.
• DevSecOps & Automation: Experience integrating security into CI/CD pipelines (e.g., GitLab, GitHub Actions, Jenkins).
• Cloud Platforms: Hands-on experience securing services and infrastructure in AWS, Azure, or GCP.
• Compliance Knowledge (Advantage): Understanding of data privacy regulations such as GDPR, CCPA, and industry-specific compliance (e.g., SOC 2, HIPAA).
• Education: Bachelor’s or Master’s degree in Computer Science, Cybersecurity, Software Engineering, or equivalent military/certification training.

Preferred Skills & Qualifications

• Experience with container orchestration security (Kubernetes, Docker).
• Familiarity with identity and access management (IAM), SSO, and federated authentication (OAuth2, SAML).
• Hands-on experience implementing SIEM and monitoring tools (e.g., Splunk, Datadog, Sentinel).
• Knowledge of secrets management solutions (Vault, AWS Secrets Manager).
• Experience in security incident simulation and red/blue team exercises.
• Contributions to security-related open-source projects or research.
• Published CVEs or security advisories (Advantage).

Soft Skills

• Strong analytical and problem-solving skills with a security-oriented mindset.
• Excellent communication and stakeholder management.
• Ability to educate and influence engineers on secure development.
• Passion for cybersecurity and proactive learning of emerging threats and mitigation strategies.

Cloud Architectures, Cross Domain Knowledge, Design Thinking, Development Fundamentals, DevOps, Distributed Computing, Microservices Fluency, Full Stack Development, Release Management, Security-First Mindset, User Experience (UX)

Health & Wellbeing

We strive to provide our team members and their loved ones with a comprehensive suite of benefits that supports their physical, financial and emotional wellbeing.

Personal & Professional Development

We also invest in your career because the better you are, the better we all are. We have specific programs catered to helping you reach any career goals you have — whether you want to become a knowledge expert in your field or apply your skills to another division.

Unconditional Inclusion

We are unconditionally inclusive in the way we work and celebrate individual uniqueness. We know varied backgrounds are valued and succeed here. We have the flexibility to manage our work and personal needs. We make bold moves, together, and are a force for good.

#israel

Job:

Engineering

Job Level:

TCP_04

Hewlett Packard Enterprise is EEO Protected Veteran/ Individual with Disabilities.

     

HPE will comply with all applicable laws related to employer use of arrest and conviction records, including laws requiring employers to consider for employment qualified applicants with criminal histories.