Senior Cloud and Infrastructure Cybersecurity Engineer
Grubhub, Chicago, IL, United States
Grubhub Security is dedicated to delivering tailored solutions that provide a secure and trustworthy experience for our users and over 31.5 million customers. We are committed to upholding the highest standards of security and compliance across our operations. Our team values innovation, integrity, and a proactive approach to safeguarding our digital assets.
More About The Role:
We are looking for a highly skilled Senior Cloud and Infrastructure Cybersecurity Engineer to lead the design, implementation, and enhancement of our cloud and infrastructure security controls. The ideal candidate will possess deep expertise in cloud platforms, Infrastructure as Code (IaC), and automation, playing a crucial role in developing and standardizing security solutions that align with industry best practices while supporting our engineering organization’s focus on building new capabilities.
The Impact You Will Make:
- Ensure that Grubhub’s key business initiatives are delivered securely by implementing robust cloud and infrastructure security controls.
- Drive consistency in Grubhub’s security practices through the development of IaC standards, templates, and processes, enabling secure and scalable deployments.
- Build and automate solutions that enhance the security, hygiene, and operational readiness of our cloud services.
- Collaborate with Production Infrastructure, Corporate IT, and cross-functional teams to introduce, improve, and maintain security controls, directly contributing to the scalability and security of our infrastructure.
- Design and implement proactive measures to handle and prevent security incidents, mitigating risks and improving our overall security posture.
- Write performant and concise code that meets Grubhub's defined standards, review peer code, and ensure the security and scalability of the features you develop.
- Assist team members in creating a backlog of technical debt and features, suggesting areas for improvement and enhancement.
- Actively work with team members, providing technical mentorship and guidance while fostering a security-first engineering culture.
Key Responsibilities:
- Design, implement, and continually improve cloud and infrastructure security controls, ensuring alignment with industry best practices.
- Develop and manage Infrastructure as Code (IaC) standards, templates, and processes to maintain consistency and enforce security policies.
- Automate security solutions for cloud services, configurations, and infrastructure components, ensuring compliance and operational efficiency.
- Conduct cloud security assessments and audits, identifying and mitigating vulnerabilities, misconfigurations, and compliance gaps.
- Collaborate with engineering teams to integrate security testing into CI/CD pipelines, streamlining security processes and improving operational excellence.
- Stay current with emerging trends, tools, and technologies in cloud security, integrating new approaches into our security practices.
- Provide mentorship to junior engineers, promoting technical excellence and a collaborative work environment.
What You Bring To The Table
- Bachelor’s degree in Computer Science, Information Technology, or a related field; an advanced degree is preferred.
- Minimum of 5 years of experience in cloud and infrastructure security, with expertise in cloud platforms (AWS, GCP) and Infrastructure as Code (Pulumi, Terraform).
- Proficiency in programming and scripting languages such as Python, with a proven track record in building and automating cloud security solutions.
- Familiarity with DevSecOps practices and CI/CD pipeline integrations.
- Experience with containerization and orchestration technologies (e.g., Docker, Kubernetes).
- Strong understanding of attack vectors, exploits, and mitigations, especially within cloud infrastructure environments.
- Excellent communication and collaboration skills, with the ability to convey technical concepts to non-technical stakeholders.
- Strong analytical and problem-solving abilities, with attention to detail and the ability to manage multiple priorities in a dynamic environment.
- Proven ability to work effectively in a fast-paced, dynamic environment while managing multiple priorities simultaneously.
Preferred Qualifications:
- Strong understanding of security compliance frameworks (e.g., CIS, NIST, ISO 27001) and regulatory compliance requirements (e.g., PCI DSS, GDPR, HIPAA) relevant to cloud environments.
- Experience in building and deploying cloud security automation tools and frameworks.
- Industry certifications such as CCSP, CompTIA Cloud+, or CISSP.
- Familiarity with cloud security posture tools and methodologies to identify vulnerabilities in cloud-native services and configurations.
And Of Course, Perks!
- Flexible PTO. Grubhub employees enjoy a generous amount of time to recharge.
- Health and Wellness. Excellent medical, dental and vision benefits, 401k matching, employee network groups and paid parental leave are just a few of our programs to support your overall well-being.
- Compensation. You'll receive a highly-competitive compensation package with eligibility for generous incentives, bonuses, commission, and RSUs.
- Free Meals. Our employees get a weekly Grubhub credit to enjoy and support local restaurants.
- Social Impact. We believe in giving back through programs like the Grubhub Community Relief Fund, and provide our employees opportunities to support causes that are important to them.