Description and Requirements

Position Description

BMC Software is looking for a motivated and skilled individual to join the IS&T SaaS Security team.  The Information Security Engineer will have an extensive background in public clouds and cloud architecture, with a focus in Software-as-a-Service (SaaS) delivery.  The successful candidate will have both implementation and operational experience with protecting and enhancing the security across a multitude of public and private cloud environments, to deliver a true and diverse multi-cloud SaaS solution of BMC products and services.

  

Responsibilities:

·         Build, implement, and maintain security solutions that minimize risks to BMC\'s cloud subscription services

·         Establish and maintain security best practices including boundary protections, and other associated processes

·         Develop mitigation strategies in response to identified risks from internal/external audits and customer assessments

·         Participate and serve as subject matter expert in security risk assessments

·         Collaborate with product and cloud architecture teams to improve cloud services

·         Work closely with IaaS/cloud partners to ensure architectures and systems meet BMC Information Security requirements

·         Coordinate with Security Operations Center to support security incidents

·         Review and approve security controls, processes, and changes

·         Comprehend complex security architectures and network data flows in multiple cloud environments

·         Review periodic security reports from internal and external sources

 

Qualifications:

·         Extensive and proven hands-on expertise with public cloud architectures, Amazon Web Services (AWS) and Microsoft Azure

·         Applied experience with AWS services, such as Firewall Manager, IAM, Control Tower, GuardDuty, Security Groups, Transit Gateway, etc.

·         Exposure to other to cloud architectures a plus, including Google Cloud, Oracle Cloud, Orange Cloud, Telefonica Cloud, OpenStack, and VMware Cloud Director

·         Comprehend complex security architectures and network data flows in multiple cloud environments

·         Ability to implement security controls to frameworks that meet regulatory compliance and industry (FedRAMP, ISO 27001, SSAE 18, PCI DSS, HIPAA, etc.)

·         Security engineering experience in a SaaS organization/product a plus

·         Advanced knowledge of supporting enterprise technologies, including Linux, Docker, Kubernetes, Apache Tomcat, SQL Server, MySQL, Postgres a plus

·         Solid understanding of distributed security architecture and ability to troubleshoot and automate repeatable activities

 

About You

·         Ability to obtain US Security Clearance

·         Bachelor Degree in Information Security or computer-related field, or equivalent experience

·         CISSP, SANS, or similar industry information security certifications required

·         7+ years of overall industry information technology experience

·         5+ years of direct Information Security experience

·         Excellent written communication skills and the proven ability to present complex, technical information to both technical and non-technical audiences

·         Ability to perform security risk analysis to identify potential solutions and mitigation strategies

·         Excellent troubleshooting, problem solving, and solution design skills

·         Must have ability to coordinate and execute an activity or solution to completion

·         Deliver results quickly and efficiently with iterative approaches

·         Effective communication skills and ability to speak directly with external customers as needed

·         Experience creating procedural documentation

 

From core to cloud to edge, BMC delivers the software and services that enable over 10,000 global customers, including 84% of the Forbes Global 100, to thrive in their ongoing evolution to an Autonomous Digital Enterprise.

It is the policy of BMC Software to afford equal opportunity for employment to all individuals regardless of race, color, creed, sex, age, sexual orientation, national origin, disability, ancestry, citizenship status, political affiliation, religion, gender, transgender, gender identity, gender expression, marital status, status as a parent, disabled veteran or status as a protected veteran, genetic information or other factors prohibited by law, and to prohibit harassment or retaliation based on any of these factors.

If you need a reasonable accommodation for any part of the application and hiring process, visit the accommodation request page.