Experience Inc. Jobs

About Commvault Commvault (NASDAQ: CVLT) is the gold standard in cyber resilience. The company empowers customers to uncover, take action, and rapidly recover from cyberattacks - keeping data safe and businesses resilient. The company's unique AI-powered platform combines best-in-class data protection, exceptional data security, advanced data intelligence, and lightning-fast recovery across any workload or cloud at the lowest TCO. For over 25 years, more than 100,000 organizations and a vast partner ecosystem have relied on Commvault to reduce risks, improve governance, and do more with data. JOB DESCRIPTION: The Opportunity... Commvault seeks a Principal Cloud Security Engineer to help develop and grow its Enterprise Cloud Security Center. The candidate will plan, implement and monitor the tool stack used to secure Commvault's cloud infrastructure. They will drive efforts to both "Shift-Left", and "Look-Right" from our CSPM. They will provide expert security advice on both generic best practices and specific technical guidance on securing network, compute, and storage infrastructures implemented in various Cloud Service Providers. The candidate will shape and potentially drive vulnerability remediation campaigns, and recommend proactive measures to prevent the recurrence of such vulnerabilities. Finally, the candidate will ensure maximum functionality of the tool stack through integration with supporting IT platforms such as IAM, Inventory Management, and other supporting services and technologies. What you'll do... Maintain CSPM tool stack health, work with allied cloud operations teams to ensure connections into monitored clouds are healthy Develop and expand tool stack reach and capabilities by deploying agents, gathering new log sources, or integrating with allied security and IT Services platforms and tools Serve as cloud security expert to assess technical risk, and drive targeted risk reduction campaigns through other security teams, and non-security stakeholders Work with Security Engineering team to integrate CSPM and allied security tools Work with Cloud Operations and IT Services teams to ensure integration and inter-operation with Cloud Infrastructure administration and IT Services Work with development teams to integrate CSPM with development tool stack to "Shift Left" Provide forward-looking threat analysis by continuously assessing the cloud landscape for relevant trends and emergent threats identifying new technologies, tools or capabilities we need to stay ahead of the security curve Who you are... Must have 8+ years' experience working in cloud generally (CloudOps, DevOps, etc.), with 3-5 years of that focused on cloud security Must have deep experience with Azure or AWS, preference given to Azure Should have some experience with a second major cloud provider (Azure, AWS, GCP, or OCI) Operational experience in IT infrastructure, Application Development, or Network Administration is a bonus Hard Skills/Knowledge Must have Engineering skills necessary to establish and maintain the health of the cloud security tool stack Must have Scripting competency with a utility scripting language (Perl or Python or similar language) Must have Programming/Scripting competency with Infrastructure-as-Code (IaC), Terraform preferred Must have a good understanding of RESTful API's Must have Expert knowledge of cloud security vulnerabilities and configuration best practices Must have Expert security knowledge of Azure or AWS cloud services in particular Nice to have knowledge of one or more vendor-neutral cloud security frameworks (CSA, NIST, ISO) Must be willing to gain competence in other clouds (Azure, AWS, GCP, OCI, Ali Baba) Soft Skills Ability to work with and communicate with audiences of all technical levels, from expert