Senior Security Engineer

at  ICEYE

REQUIREMENTS:

What will you need to be successful in this role?

As a Senior Security Engineer, you will bring a blend of expertise and hands-on experience to enhance our security measures:

• Solid expertise with IAM
• Proficiency in securing API endpoints to prevent unauthorized access and mitigate potential vulnerabilities
• Experience implementing Zero Trust principles
• Experience with identity provider setup and management
• Expertise in DevSecOps and a shift-left mentality, focusing on integrating security into every stage of the development lifecycle, along with strong automation skills
• Understanding and managing public key infrastructure (PKI) systems

In addition to the above, it would be beneficial if you had the below attributes and skills:

• Strong understanding and hands-on experience with OAuth2.0, OIDC, and SCIM protocols
• Experience implementing and managing security services within AWS environments
• Experience managing identity management platforms such as Auth0, Okta, or FusionAuth
• Knowledge of Istio and Spire/SPIFFE
• Understanding of OPA (Open Policy Agent)
• Experience with Kubernetes
• Familiarity with HashiCorp Vault

• Senior Security Engineer (IAM)
• Finland
• Permanent
• Remote
  Who are we?
  ICEYE is the global leader in synthetic aperture radar (SAR) satellite operations for Earth Observation, persistent monitoring, and natural catastrophe solutions; owning and operating the world’s largest SAR constellation. ICEYE is headquartered in Finland and operates from five international locations with more than 600 employees from nearly 60 countries, inspired by the shared vision of improving life on Earth by becoming the global source of truth in Earth Observation.
  Our satellites acquire images of Earth at any time – even when it’s cloudy or dark – providing commercial and government partners with unmatched persistent monitoring capabilities. Information derived from our SAR images helps customers make data-driven decisions to address time-critical challenges in various sectors, such as maritime, disaster management, insurance, and finance.
  Our team is a tight-knit group of experts across many disciplines (e.g., engineering, software development, radar technology, etc.). We’re innovative, driven people who strive for excellence in everything we do. Teamwork, curiosity, and having fun are core values at ICEYE, and contribute to Making the Impossible possible!!
  Why should you work for us?
  ICEYE is at the cutting edge of new technology and we are continuing to build and operate our commercial constellation of SAR satellites. Working with ICEYE, you will be part of making the impossible possible, whilst shaping the Earth Observation industry. You will work with varied, diverse and engaged colleagues to further the ICEYE mission. At ICEYE we realize that without great people we can not succeed, therefore you will be an integral, valued and appreciated colleague, with the ability to directly shape the vision and direction of the business.
  We actively support Continuous Professional Development, and will provide access to a range of avenues to allow you to succeed, including courses, training and attendance at conferences. ICEYE is a place where your development, your growth and your success is a priority.
  What is the role?
  As a Senior Security Engineer at ICEYE, you will leverage your expertise in Identity and Access Management (IAM) and access control model design to overhaul existing practices and develop robust solutions for securing a modern and rapidly evolving work environment. This role is part of our Security Engineering team, which is responsible for both building a secure self-service platform for most daily developer actions and working with developers and product managers on further adopting secure development practices. The goal for the team is to gather together blue and red team experts to work together on how to best solve the cat-and-mouse game that is modern cybersecurity. Because of the collaborative nature of the work, we seek individuals who excel in collaborative environments, seek continuous improvements and have the expertise to navigate the complexities of today’s threat landscape.
  A typical day for you will involve collaborating with platform and development oriented teams to assess and enhance our security posture. You will start your day by reviewing security events, conducting threat analysis, and performing vulnerability assessments. Throughout the day, you will design and implement access control models, manage IAM operations, and enforce the principle of least privilege for our cloud infrastructure and services. Your IAC wizardry and craftsmanship, combined with a passion for GitHub, will drive the definition, refinement, and automation of these security concepts and processes. You’ll regularly evaluate the robustness of our security controls, report any identified gaps to your peers, and propose infrastructure enhancements. This feedback loop is integral to our continuous improvement approach.
  You will serve as a reference for authentication and authorization design choices and implementation details across multiple projects.