Senior Cloud Infrastructure Engineer (Remote)

WELCOME TO SITA

We’re the team that keeps airports moving, airlines flying smoothly, and borders open. Our tech and communication innovations are the secret behind the success of the world’s air travel industry.

You’ll find us at 95% of international hubs. We partner closely with over 2,500 transportation and government clients, each with their own unique needs and challenges. Our goal is to find fresh solutions and cutting-edge tech to make their operations run like clockwork. Want to be a part of something big?

Are you ready to love your job? The adventure begins right here, with you, at SITA.

The ideal candidate will have good problem-solving skills and a strong desire to implement scalable and sustainable technological solutions. Part of the scope includes a close working interlock development, operations, and IT teams to automate and optimize our systems, ensuring they are highly available, performing and resilient.

• Create / review Infrastructure as Code to meet SITA, regulatory and market security requirements, and best practices to be deployed via CI/CD pipelines.
• Develop, implement, and manage automated security solutions and tools to streamline the identification and remediation of vulnerabilities.
• Proactively participate in the detection and remediation of security vulnerabilities and defects.
• Maintain secure infrastructure and security monitoring solutions, ensuring compliance with security best practices and industry standards.
• Participate in post-incident reviews to prevent recurrence and refine the system reliability framework
• Manage and enforce IAM policies, ensuring least privilege access, and regularly auditing access controls.
• Maintain up-to-date security documentation, policies, and procedures. Ensure compliance with relevant security regulations and standards (e.g. SOC 2).
• Collaborate with SRE teams to ensure that security measures do not compromise system performance or availability. Work on balancing security with operational efficiency.
• Oversee the Implementation of security patches and updates in a timely manner.

Qualifications:

• 3-5 years of experience in Engineering and Operations capacity with at least 3 years in a security related field.
• Experience beyond simple scripts, in languages such as Python, PowerShell, Bash, etc
• Familiarity with Linux and Windows operating systems to include hardening of the operating systems
• Detailed knowledge of cloud platforms, landing Zone Architecture and Azure Key Vault administration and management experience.
• Experience in management and optimization of Tanium deployments to ensure efficient endpoint discovery, performance monitoring, security, and threat detection capabilities.
• Good diagnostic and problem-solving skills with the ability to analyze systems logs and data
• Experience with security tools like SIEMs, IDS/IPS, vulnerability scanners, and firewalls.
• Bachelor’s degree in Information Security, Computer Science or related discipline.

• Experience in Implementation and management of OneTrust or any other PAM solutions to control and monitor privileged access across the organization is a plus.
• Certifications with CISSP, CISM, or CKS.
• Experience or understanding of CI/CD pipelines.

• Flex Day: Make your workday suit your life and plans.

Competitive Benefits: Competitive benefits that make sense with both your local market and employment status.