Senior Infrastructure Security Engineer

Dive in and do the best work of your career at DigitalOcean. Journey alongside a strong community of top talent who are relentless in their drive to build the simplest scalable cloud. If you have a growth mindset, naturally like to think big and bold, and are energized by the fast-paced environment of a true industry disruptor, you’ll find your place here. We value winning together—while learning, having fun, and making a profound difference for the dreamers and builders in the world.

At DigitalOcean, were not just simplifying cloud computing - were revolutionizing it. We serve the developer community and the businesses they build with a relentless pursuit of simplicity. With our customers at the heart of what we do - and powered by a diverse culture that values boldness, speed, simplicity, ownership, and a growth mindset - we are committed to building truly useful products. Come swim with us!

Position Overview

We are seeking an inspired and motivated technical contributor to join the DigitalOcean Security Team as an Infrastructure Security Engineer. You will report to the Security Engineering Manager for the APAC region and will be a key member of DigitalOcean’s security team.

Role

In this role, you will play an essential part in enhancing DigitalOceans security posture. This includes collaborating with various Engineering and Security teams to:

• Design and implement infrastructure security solutions at scale
• Identify and mitigate security issues, vulnerabilities, and misconfigurations for both internal users and customers
  
  

• Establishing an understanding of DigitalOcean’s production and corporate environments, from applications to infrastructure, keeping up-to-date with material changes and future directions
• Partnering closely with the other technical teams within the Security Organization and across our engineering and other functions to harden accounts, platforms, and service structures to combat intrusions, hijackings, and potential compromises
• Developing early warning systems to detect, respond, and mitigate risks to the business as well as the customer environment
• Develop, maintain, and monitor the adoption of sound Cloud security practices
• Ownership of vulnerability management and patching policies of Virtual machines, Containers and Kubernetes infrastructure
• Identify and help mitigate security issues and misconfigurations related to Cloud services, Virtual machines, Containers and Kubernetes infrastructure
• Ownership and management of preventative security measures and services such as WAF, SIEM and similar security solutions.
• Consistently improving security as the company scales, driving continuous improvement through data collection and correlation, being mindful that security should be an efficiency enabler for the business, not a detractor
  
  

• 5+ years of experience automating security tooling, alerting, and remediation workflows, especially security event enrichment, reduction, and correlation
• Vulnerability Management experience, focused on prioritizing known vulnerabilities for remediation at scale and classifying previously unknown vulnerabilities
• Strong understanding of Linux systems and common O/S hardening practices
• Hands-on experience with cloud service providers. Amazon Web Services (AWS) is a core requirement, while familiarity with Google Cloud Platform (GCP) is a strong advantage. Focus areas include security issues and misconfigurations across cloud services, virtual machines, containers, and Kubernetes infrastructure.
• Strong understanding of systems in a multi-tenant, cloud environment
• Clear written and verbal communication skills to include: technical writing, presenting, coaching, mentoring
• Bonus: Experience in one or more of the following areas:
• Endpoint Intrusion Detection, Response, and Remediation, open source or commercial
• Configuration as Code software and methods (eg, Chef, Salt, Ansible)
• Message Bus Architectures and Data Processing Pipelines (eg, Kafka)
• Log management (e.g., ELK, Splunk, BigQuery)
• Engineering and maintaining Identity and Access management systems (e.g., OpenLDAP, Okta, VPN or Zero Trust)
  
  

• We innovate with purpose. You’ll be a part of a cutting-edge technology company with an upward trajectory, who are proud to simplify cloud and AI so builders can spend more time creating software that changes the world. As a member of the team, you will be a Shark who thinks big, bold, and scrappy, like an owner with a bias for action and a powerful sense of responsibility for customers, products, employees, and decisions.
• We prioritize career development. At DO, you’ll do the best work of your career. You will work with some of the smartest and most interesting people in the industry. We are a high-performance organization that will always challenge you to think big. Our organizational development team will provide you with resources to ensure you keep growing. We provide employees with reimbursement for relevant conferences, training, and education. All employees have access to LinkedIn Learnings 10,000+ courses to support their continued growth and development.
• We care about your well-being. Regardless of your location, we will provide you with a competitive array of benefits to support you from our Employee Assistance Program to Local Employee Meetups to flexible time off policy, to name a few. While the philosophy around our benefits is the same worldwide, specific benefits may vary based on local regulations and preferences.
• We reward our employees. The salary range for this position is based on market data, relevant years of experience, and skills. You may qualify for a bonus in addition to base salary; bonus amounts are determined based on company and individual performance. We also provide equity compensation to eligible employees, including equity grants upon hire and the option to participate in our Employee Stock Purchase Program.
• We value diversity and inclusion. We are an equal-opportunity employer, and recognize that diversity of thought and background builds stronger teams and products to serve our customers. We approach diversity and inclusion seriously and thoughtfully. We do not discriminate on the basis of race, religion, color, ancestry, national origin, caste, sex, sexual orientation, gender, gender identity or expression, age, disability, medical condition, pregnancy, genetic makeup, marital status, or military service.
• This job is located in Hyderabad, India