Cloud Security Engineer

Flexport

Flexport

Other Engineering
Shanghai, China · Shenzhen, Guangdong, China
Posted on May 6, 2024

About Flexport:

At Flexport, we believe global trade can move the human race forward. That’s why it’s our mission to make global commerce so easy there will be more of it. We’re shaping the future of a $8.6T industry with solutions powered by innovative technology and exceptional people. Today, companies of all sizes—from emerging brands to Fortune 500s—use Flexport technology to move more than $19B of merchandise across 112 countries a year.

The recent global supply chain crisis has put Flexport center stage as we continue to play a pivotal role in how goods move around the world. At a valuation of $8 billion, we’re experiencing record growth and are proud to have the support of the best investors in the game who believe in our mission, solutions and people. Ready to tackle global challenges that impact business, society, and the environment? Come join us.

Cloud Security Engineer - APAC

Enable Flexport to become the most trusted company in global trade.

The Opportunity:

At Flexport, we believe global trade can move the human race forward. That’s why it’s our mission to make it easy and accessible for everyone. We’re shaping the future of a $8.6T industry with solutions powered by innovative technology and exceptional people. Today, companies of all sizes—from emerging brands to Fortune 500s—use Flexport technology to move more than $19B of merchandise across 112 countries a year.

The recent global supply chain crisis has put Flexport center stage as we continue to play a pivotal role in how goods move around the world. At a valuation of $8 billion, we’re experiencing record growth and are proud to have the support of the best investors in the game who believe in our mission, solutions and people. Ready to tackle global challenges that impact business, society, and the environment? Come join us.

Flexport is looking for a Cloud Security Engineer to help Flexport establish itself as the most trusted company in the global trade ecosystem. As a Cloud Security Engineer you will be responsible for enabling visibility across our cloud environments, deploying and managing commercial security tools, building integrations, automation and custom tools to bridge gaps, as well as building security guardrails into our cloud infrastructure deployment pipelines.

What you’ll do:

  • Partner with engineering, infrastructure, and security teams to develop, deploy, and maintain secure cloud architectures aligned to internal standards and current best practices.
  • Implement monitoring capabilities that enable continuous asset inventory and posture assessment across cloud operating environments.
  • Deploy and manage secret and privileged access management technologies to enable secure access, application of least privilege principle and accountability for change/configuration management.
  • Design and implement Identity and Access Management capabilities in close partnership with our Engineering and Product teams.
  • Implement and administer security technology controls (WAF, RASP, DDoS, anti-malware, forensics, IDS, DLP, CSPM) across cloud infrastructure.
  • Identify areas of improvement and implement automation where possible.
  • Integrate cloud applications, infrastructure, and security tools with SIEM/SOAR platforms that consolidate visibility across the environment for continuous monitoring, incident detection, analysis, forensic artifact collection, containment, eradication, and recovery.
  • Assess data flows across the cloud environment to identify process weaknesses or technology gaps that could result in privacy or security breaches.
  • Participate in security incident response, red team and penetration testing exercises, bug bounty response, and audit support.
  • Prepare reports, presentations, and newsletter items for communicating with management and teams across the company.
  • Create a culture of transparency, information sharing, and collaboration through the development of excellent documentation, mentoring of junior team members, and living Flexport’s values.

What you’ll need:

  • Strong interpersonal and communications skills
  • Bachelor's degree in Computer Science or a related field
  • 3+ years of progressive security experience in a fast-paced global environment.
  • 3+ years of experience with major IaaS and PaaS cloud platforms and best practices for monitoring and securing such environments.
  • Experience with container technologies, and software-oriented architecture.
  • Experience with DevOps and SaaS environments.
  • Experience with IaC implementation and challenges.
  • Experience with IAM, secrets and privileged access management, and PKI.
  • Experience with SIEM and security orchestration technologies.
  • Experience with cloud environments AWS, Azure, GCP
  • Experience automating security tasks in languages such as Go, JavaScript, Python, or Ruby.
  • Excellence in problem-solving, strategic thinking, and collaboration with cross-functional teams.

Where you’ll work:

Investing your time with Flexport means having immediate impact, all over the world. You’re empowered to do what’s best for everyone and trusted to make the right decisions when and where you need them. Join our collective of entrepreneurs and improve the world’s experience in global trade.

We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.

At Flexport, our ability to fulfill our mission of making global commerce easy and accessible relies on having a diverse, dedicated and engaged workforce. That is why Flexport is committed to creating and nurturing an environment where anyone can be their authentic self. All qualified applicants will receive consideration for employment regardless of race, color, religion, sex, national origin, age, physical and mental disability, health status, marital and family status, sexual orientation, gender identity and expression, military and veteran status, and any other characteristic protected by applicable law.