• Deliver Cloud Security Engineering functions intended to establish security code elements across private and public multi-cloud
• Provide security and engineering expertise and guidance to the Cloud Programs, including Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Policy as Code (PaC).
• Collaborate with enterprise architects and SMEs to deliver complete security architecture solutions.
• Design and deliver Container security requirements and guardrails across VMs, Containers, CNI, CSI, and Mesh
• Identify exciting opportunities for adopting new technologies to solve existing needs and predicting future challenges.
• Present key security ideas to various audiences (technical and non-technical), in an effective manner.

Required Skills/Experience:

• 3 years of experience in Information Security roles.
• 2 years of experience with OpenShift or Kubernetes cluster administration or Kubernetes security solution implementation.
• Experience with Docker, Open Container Initiative (OCI), or similar containerization platforms.
• Experience in defining Rego policies for enforcement through Open Policy Agent (OPA) Gatekeeper.
• Experience using Infrastructure as Code to deploy and maintain OPA Gatekeeper in production environments.
• Proven ability to read and critique source code, including Terraform and either Python or Go.
• Experience in applying Security Principles to Kubernetes or OpenShift clusters and container workloads.
• 2+ years of experience utilizing Git, GitOps and various Git workflows.
• Experience with pull-based GitOps via ArgoCD to manage cluster deployments and workloads as code.
• Experience working with GitHub Actions or Jenkins Pipelines.
• Understanding of Cloud Fundamentals, including securing public cloud with data protection controls.
• Experience performing validation and verification of configurations in a cloud environment.
• Knowledge of security configuration management, container security, endpoint security and secrets management as they are applied to cloud applications.
• Knowledge of network architecture, proxy infrastructure, and programs to support network access and enablement.
• Understanding of multiple Information Security domains, such as Identity & Access Management, Infrastructure Vulnerability Management, Network Security, Data Loss Prevention, End User Security, etc.
• Experience in defining resources configurations using Terraform or Helm.
• Understanding of DevOps and DevSecOps principles

Educational Requirements:

• Bachelor’s Degree in Computer Science, Software Engineering, Electric Computer Engineering (ECE) or equivalent information security degree.
• Certified Kubernetes Administrator (CKA) or equivalent work experience.
• Certified Kubernetes Security Specialist (CKS) preferred.
• Other Information Security or Cloud Certifications preferred, such as CISSP, CISM, CCSP.

• Salary Range: $85,000.00 to $150,000.00 annually + bonus + benefits
• The above represents the expected salary range for this job requisition. Ultimately, in determining your pay, we’ll consider your location, experience, and other job-related factors.
• We back our colleagues and their loved ones with benefits and programs that support their holistic well-being. That means we prioritize their physical, financial, and mental health through each stage of life. Benefits include:
• Competitive base salaries
• Bonus incentives
• 6% Company Match on retirement savings plan
• Free financial coaching and financial well-being support
• Comprehensive medical, dental, vision, life insurance, and disability benefits
• Flexible working model with hybrid, onsite or virtual arrangements depending on role and business need
• 20+ weeks paid parental leave for all parents, regardless of gender, offered for pregnancy, adoption or surrogacy
• Free access to global on-site wellness centers staffed with nurses and doctors (depending on location)
• Free and confidential counseling support through our Healthy Minds program
• Career development and training opportunities
• For a full list of Team Amex benefits, visit our Colleague Benefits Site.
• American Express is an equal opportunity employer and makes employment decisions without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran status, disability status, age, or any other status protected by law.
• We back our colleagues with the support they need to thrive, professionally and personally. That's why we have Amex Flex, our enterprise working model that provides greater flexibility to colleagues while ensuring we preserve the important aspects of our unique in-person culture. Depending on role and business needs, colleagues will either work onsite, in a hybrid model (combination of in-office and virtual days) or fully virtually.
• US Job Seekers/Employees - Click here to view the “Know Your Rights” poster and the Pay Transparency Policy Statement.
• If the links do not work, please copy and paste the following URLs in a new browser window: https://www.dol.gov/agencies/ofccp/posters to access the three posters.
• Employment eligibility to work with American Express in the U.S. is required as the company will not pursue visa sponsorship for these positions.