Principal Cloud Security Developer

Arctic Wolf, with its unicorn valuation, is the leader in security operations in an exciting and fast-growing industry—cybersecurity. We have won countless awards for our excellence in security operations and remain dedicated to providing an industry-leading customer and employee experience.

Our mission is simple: End Cyber Risk. We’re looking for a Principal Cloud Security Developer to be part of making this happen.  

About the Role
As a Principal Cloud Security Developer, you will be the brains and backbone of the Cloud Security team, strongly focused on ensuring the internal security of the Arctic Wolf infrastructure via all available means and channels. This is a hands-on position with a strong focus on raising the bar for Cloud Security throughout the organization. You will work largely within an “everything-as-code" Amazon Web Services based environment with a small but growing footprint in Azure.
 

The focus of this role is on helping identify, champion, and ensure improvements to our ability to Protect and Detect across our infrastructure and product - defining, deploying, managing and improving the use and usability of both cloud-based and other infrastructure security tooling.

In addition, you will lead the effort to continuously improve and simplify access control throughout our Cloud environments, with work largely focused on AWS IAM and CloudTrail Lake, along with custom tooling to enable least-privilege and just-in-time access. You will frequently work collaboratively with other organizations - representing the team, driving our security requirements, and advocating for our strategic/tactical goals. You will act as a leader as well as a Subject Matter Expert and be extensively involved in our strategy and planning.
 

Finally, you will help get to the root of security risks and events at Arctic Wolf - acting as the key contributor for high impact incidents, engaging with teams to support design improvements, pushing vendors to implement tooling improvements, and always looking at how we can automate away toil.

What you might accomplish in the first six months:

• Get comfortable in our AWS environment and help us branch out to include Azure and GCP, as well as move forward our security posture in other platforms like Kubernetes.

• Identify a gap, then define, deploy and operationalize a new Amazon Web Services security service or feature using Infrastructure as Code

• Research and enable new features, operationalize, and grow usage of new and existing security tooling

• Act as a Subject Matter Expert in response to infrastructure security events and incidents, follow up with Root Cause Analysis and help stop repeats

• Automate reporting and remediation of security findings through tools like EventBridge, Lambda, Jira, Slack, Security Hub

• Improve automation, data collection, reporting, usability, or add features around Access Control

• Lead technical aspects of certifications. For example, FedRAMP, CMMC,PCI, or SOC2

• Lead the improvement of security in a problem domain (host based, containers, Identity Access Management, Lambda, APIs, etc.)

• Drive understanding and remediation of risks throughout our cloud infrastructure

• Define and lead improvements to CI/CD to improve guardrails and gates to production

Your Responsibilities:

• Take ownership of strategic problems, work with internal security teams, engineering staff, and product functions to deliver actionable solutions that will lower risk

• Stay current on the cloud security landscape, advocate for useful advances, and help set and implement security direction

• Define and maintain our security toolset, ensuring that it is scalable and automated

• Drive improved security monitoring for platforms, infrastructure, and code

• Support remediation of infrastructure security problems across our range of products

• Build significant automation to remove the operational toil for the Cloud Security and other teams

• Help set the direction for cloud security initiatives by improving business intelligence tools and driving a reduction in risk throughout the organization

Technical Skills

• Extensive experience with major projects in AWS, particularly using AWS security services (GuardDuty, CloudTrail, Detective, IAM Access Analyzer, IAM, Security Hub)

• Experience with multiple projects focused on using IaC (CloudFormation, Terraform) to manage and deploy services

• Significant experience with programming languages (Python, Go) and libraries (boto3, troposphere) · Very familiar working with security/related services like KMS, ACM, Athena, CloudWatch, SSM

• Comfortable working with AWS Lambda - writing, deployment, operations

• Comfort with CI/CD systems, particularly automating security checks and integrations with other tools

Our Team Culture

• Unwavering desire to automate away large portions of your work

• Comfortable communicating via Slack, Zoom calls, Jira tickets, reaching across organizations and facilitating improved communications to help keep the Cloud Security Group engaged and approachable throughout the company

• Able to work independently, know when to ask for help, and work at various levels of the business to gather useful information, requirements, and objectives

• Unafraid of ambiguity - proficient at taking an idea, soliciting feedback and input, then figuring out how to translate an idea to work units and then to reality

• Love well written documentation

• Understanding of all that’s required to run a service in production (ex: deployment, monitoring, metrics, logging, tracing, scaling, access controls, etc)

• Ability and desire to be prescriptive and apply our deep knowledge of technology to solving problems at scale

• Comfortable sharing knowledge and improving the team through your experience and lessons learned

• An advocate for effective Cloud Security

Technology that you might work with while you are here  

• Cloud: GuardDuty, CloudTrail, Security Hub, CloudWatch, CloudFormation, security groups, VPC flow logs, certificate management (Amazon Certificate Manager), key management (Key Management Service), Athena, EKS, Inspector, Lambda and other serverless technology, Terraform, Azure, Google Cloud Platform, Web Application Firewall, Shield

• Platforms: Kubernetes, Docker, ECS, ElasticSearch, Kafka

• Programming: Go, Python

• CI/CD: GitHub, Github Actions, Harness

• Observability: Prometheus, Grafana, Alert Manager, CloudWatch

About Arctic Wolf:

At Arctic Wolf we’re cultivating a collaborative and productive work environment that welcomes a diversity of backgrounds, cultures, and ideas to make our teams even stronger as we grow globally. We’ve been named among the list of Top Workplaces in USA, Minnesota (2021-2024), and Texas (2023-2024), Best Places to Work San Antonio (2023, 2024) and Minneapolis/St. Paul (2022-2024), Great Place to Work - Canada (2021-2024), and on the list of Best Workplaces in Technology (2024) in Canada. As well as on Fortune’s Best Place to Work for Millennials (2023) and Top Technology Workplace (2023) lists.

Our Values 

Arctic Wolf recognizes that success comes from delighting our customers, so we work together to ensure that happens every day. We believe in diversity and inclusion, and truly value the unique qualities and unique perspectives all employees bring to the organization. And we appreciate that—by protecting people’s and organizations’ sensitive data and seeking to end cyber risk— we get to work in an industry that is fundamental to the greater good. 

We celebrate unique perspectives by creating a platform for all voices to be heard through our Pack Unity program. We encourage all employees to join or create a new alliance. See more about our Pack Unity here.  

We also believe and practice corporate responsibility, and have recently joined the Pledge 1% Movement, ensuring that we continue to give back to our community. We know that through our mission to End Cyber Risk we will continue to engage and give back to our communities. 

All wolves receive compelling compensation and benefits packages, including: 

• Equity for all employees

• Flexible time off, paid volunteer days, and paid parental leave

• 401k & RRSP matching program

• Enhanced maternity leave and fertility support services

• Robust Employee Assistance Program (EAP) for mental health services

• Training and career development programs

Arctic Wolf is an Equal Opportunity Employer and considers applicants for employment without regard to race, color, religion, sex, orientation, national origin, age, disability, genetics, or any other basis forbidden under federal, provincial, or local law. Arctic Wolf is committed to fostering a welcoming, accessible, respectful, and inclusive environment ensuring equal access and participation for people with disabilities. As such, we strive to make our entire employee experience as accessible as possible and provide accommodations as required for candidates and employees with disabilities and/or other specific needs where possible. Please let us know if you require any accommodations by emailing recruiting@arcticwolf.com. 

Security Requirements:

• Conducts duties and responsibilities in accordance with AWN’s Information Security policies, standards, processes and controls to protect the confidentiality, integrity and availability of AWN business information (in accordance with our employee handbook and corporate policies).

• Background checks are required for this position.