Senior Site Reliability Engineer, Security

Company descriptionAt Red Hat, we connect an innovative community of customers, partners, and contributors to deliver an open source stack of trusted, high-performing solutions. We offer cloud, Linux, middleware, storage, and virtualization technologies, together with award-winning global customer support, consulting, and implementation services. Red Hat is a rapidly growing company supporting more than 90% of Fortune 500 companies.Job summaryThe Red Hat OpenShift Site Reliability Engineering (SRE) team is looking for a Senior Site Reliability Engineer to join our Security team. In this role, you will work on Red Hat OpenShift, which is Enterprise Kubernetes, as part of a team hosting and managing the code in the public cloud. As a member of the Security team, you will track, adapt, create, and teach best practices in cloud security, including system security, cryptography, incident response, and policy. Along with the rest of your team, you will interact with other site reliability engineers and product engineering associates around the world to deliver large, secure, containerized cluster environments. As a Senior Site Reliability Engineer, you will work in a complicated and fast-paced environment while while keeping the globally-distributed, cloud-based, containerized service (Enterprise Kubernetes) secure and available for our customers. Successful applicants must reside in a state where Red Hat is registered to do business.Primary job responsibilities

Write software to defend against security threats, primarily in Golang and some scripting languages like Python

Design and implement continuous monitoring (ConMon) systems using both open source and commercial tools to meet stringent compliance requirements of security-conscious customers

Produce security and compliance documentation to describe security architecture and operations

Draft security policy for SRE system design and operations

Collaborate across Red Hat’s Information Security and Product Security teams to improve security posture

Coordinate with our site reliability engineers for ongoing threat mitigation

Perform peer code reviews, testing, and Common Vulnerabilities and Exposures (CVE) analysis

Resolve customer issues in cooperation with Red Hat's global customer support team

Create and maintain standard operating procedures and documentation

Participate in an on-call SRE rotation, including occasional weekends

Required skills

5+ years of experience managing Linux servers running Red Hat Enterprise Linux (RHEL), CentOS, or Fedora hosted at a cloud provider like Amazon Web Services (AWS), Google Cloud Platform (GCP), or Microsoft Azure

3+ years of experience with enterprise system monitoring; knowledge of Prometheus is a plus

3+ years of experience with enterprise configuration management software like Red Hat Ansible Automation Platform, Puppet, or Chef

2+ years of experience programming with at least one object-oriented language; Golang or Python are a plus

2+ years of experience delivering a hosted service

Experience with intrusion detection systems (IDSs) or detection tools like Snort, psad, ClamAV, or OpenSCAP

Solid understanding of standard TCP/IP networking protocols and other common protocols like DNS and HTTP

1+ year(s) of experience with Kubernetes

Experience with SELinux is a plus

Red Hat is proud to be an equal opportunity workplace and an affirmative action employer. We review applications for employment without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, ancestry, citizenship, age, uniformed services, genetic information, physical or mental disability, medical condition, marital status, or any other basis prohibited by law.Red Hat does not seek or accept unsolicited resumes or CVs from recruitment agencies. We are not responsible for, and will not pay, any fees, commissions, or any other payment related to unsolicited resumes or CVs except as required in a written contract between Red Hat and the recruitment agency or party requesting payment of a fee.#LI-REMOTELocation US-CA-RemotePosting date 12 hours ago (9/22/2020 11:28 AM)Job ID 79825