Cloud Security Engineer

About our TeamSamsung Ads focuses on enabling brands to connect with Samsung audiences across all devices. As an international company, at Samsung we work on big complex projects with stakeholders and teams located around the globe.Our purpose is to deliver unparalleled results for our customers. Samsung Ads uniquely transforms the advertising landscape by using comprehensive data to build the world’s most intelligent connected audience platform. We deliver on Samsung Electronics’51-yearcommitment to excellence through smart, easy, effective advertising solutions to make advanced video advertising work.If you're interested in joining a growing team securing an outstanding, world-class advertising organization with a relentless focus on design and customer experience, you've come to the right place! Role and ResponsibilitiesAs a Cloud Security Engineer, you will be responsible for building and maintaining secure foundations of a scalable infrastructure that empowers engineers to innovate quickly and safely. Contribute to building the detection pipeline using the existing CSPM (cloud security posture management), ASM (Attack surface management), DLP, SIEM and SOAR tools; tuning out false positives and automating playbooks.Maintain all installations of security related applications on the cloud, cloud security operations playbooks, incident response plans, processes, procedures, and equipment. Drive proactive monitoring and reporting for security controls and identify opportunities to implement security automation.Contribute to building out the infrastructure as code pipeline as well as develop custom and open-source security solutions.Scale proactive security controls to new environments (e.g., acquisitions).Work on the remediation of vulnerabilities.Build Terraform modules with built-in security guardrails, such as logging, encryption, and automated threat detection enablementDeploy cloud-native detection capabilities using AWS Guard Duty, Security Hub, and custom detection rules to identify credential compromise, crypto-mining, and lateral movementConduct security audits of cloud resource configurations, and remediate deviations from CIS Benchmarks and our internal security policiesApply zero trust principles through strict network segmentation, authentication, and authorization across our cloud environmentsParticipate in the security on-call rotation and respond to security alerts and incidents to ensure rapid mitigation and root cause analysis.Contribute to defining, building and improving on processes to secure AI systems again adversarial threats. Skills and QualificationsMinimum 3 years' experience and a Bachelor’s degree in Computer Science or related fields such as Statistics, Data Science, Technology, Engineering and Mathematics.Ability to work on your own with self-motivation and be able to motivate your team members. Ability to ensure tasks are completed as specified without micromanagingA solution-oriented approach to problem-solving with an eye for detail and efficiency.Deep understanding and hands-on experience in cloud security on AWS.Understanding of network security, endpoint security, vulnerability management and cloud native security toolsAutomation proficiency in python or similar.Proficiency in terraform or similar.Understanding of threat landscape, MITRE ATT&CK framework and being able to translate those to actionable detections, tuning out false positives.Some experience with ML and AI security. We offerTeam:○ Friendly working atmosphere○ Working with the latest technologies on the market○ Monthly integration budget○ Flexible working hours○ Wide range of trainings Equipment:○ PC workstation/Laptop 2 external monitors○ OS: Linux, Windows Benefits:○ Private medical care (possibility to add family members)○ Multisport card○ Life insurance○ Lunch card○ A partial reimbursement of the cost of an English language course○ Possibility to learn Korean for free○ Variety of discounts (Samsung products, theaters, restaurants)○ Unlimited free access to Copernicus Science Center for you and your friends○ Possibility to test new Samsung products Location:○ Office in Warsaw Spire near metro station○ Attractive relocation package○ Hybrid model of work – 3 days from the office per week