Cloud Cybersecurity Engineer (AWS) - job 1 of 2

As a Cloud Cybersecurity Engineer at Fever, your main responsibilities will include managing and improving the vulnerability management process across cloud environments, conducting regular security assessments to identify vulnerabilities in the AWS ecosystem, and enforcing AWS security best practices. You’ll also collaborate with DevOps and engineering teams to integrate security practices into cloud environments, ensuring that our systems are secure and resilient.

To qualify for the Cloud Cybersecurity Engineer role at Fever, you will need at least 4 years of experience in cloud security and/or cybersecurity roles. A Bachelor's or Master's Degree in Computer Science, Information Security, or a related field is essential. Proficiency in scripting for automation, hands-on expertise in vulnerability management for cloud environments, and a strong understanding of AWS cloud infrastructure security are also required.

Key skills for succeeding as a Cloud Cybersecurity Engineer at Fever include strong analytical and problem-solving abilities, hands-on experience with AWS security configurations, and proficiency in programming languages for automation, such as Python or Go. Additionally, excellent communication skills and the ability to work cross-functionally will be vital to driving security initiatives within the organization.

Fever employs a variety of cutting-edge tools and technologies for cloud security, focusing on automated security solutions and frameworks that align with best practices. Experience with Cloud Native Application Protection Platforms (CNAPP) and centralized vulnerability management is a plus. Familiarity with Infrastructure as Code (Terraform, CloudFormation) and Cloud Security Posture Management (CSPM) tools will also be beneficial for this role.

Fever offers a comprehensive benefits package for its Cloud Cybersecurity Engineers, including a competitive salary and the potential for performance-based bonuses. You’ll also enjoy a 40% discount on Fever events, a friendly work environment in Madrid, flexible working options, health insurance, and support for professional development, including English lessons and memberships. The opportunity to make a real impact in a global leader in entertainment is also a significant part of the package.

When answering this question, be sure to highlight specific AWS services you have worked with, such as IAM for access management, VPC for secure networking, and CloudTrail for logging. Describe the security measures you've implemented, like using security groups and network ACLs and ensuring compliance with best practices in cloud architecture.

Discuss your methodology for vulnerability management, which could include regular assessments using automated tools, continuous monitoring, and prioritizing vulnerabilities based on risk. Highlight your experience in developing and implementing remediation strategies, as well as how you engage with teams to ensure timely fixes.

List the scripting languages you have experience with, focusing on Python and Go if applicable. Provide examples of how you have used these languages to automate security processes, such as creating scripts for vulnerability scanning or automated reporting.

Think about a specific incident where you played a key role. Describe the nature of the incident, how you discovered it, the steps you took to mitigate the risk, and what you learned from the experience to avoid future incidents. Highlight problem-solving skills and communication with stakeholders.

Explain your knowledge of compliance standards relevant to cloud security, such as GDPR or HIPAA, and how you incorporate them into your work. Discuss regular audits, security assessments, and collaboration with teams to maintain and ensure compliance.

Mention specific tools you've utilized for threat detection, such as AWS GuardDuty, Security Hub, or third-party solutions like Splunk or Datadog. Describe your experience setting up alerts and incident response strategies based on findings from these tools.

Outline your approach to conducting risk assessments, including identifying assets, assessing potential threats, analyzing vulnerabilities, and calculating risk levels. Discuss how you document your findings and communicate them to the relevant stakeholders.

Talk about resources you follow, such as security blogs, podcasts, and industry publications. Mention any conferences you've attended or certifications you're pursuing to ensure you're knowledgeable about the latest trends in cybersecurity.

Describe the strategies you utilize to promote security awareness within the organization. This could include training sessions, interactive workshops, or developing internal documentation that outlines best security practices. Highlight the importance of a security-first culture.

Express your enthusiasm for Fever's mission and your alignment with their goals. Mention specific aspects of the role and the company that excite you, such as the opportunity to work with innovative technology in a high-growth environment and your passion for cloud security.