Cloud Security Engineer | Cybersecurity Team

We are a global company with offices in the US, Europe and Asia. In these centers, we carry out various stages of product development, from initial concept to mass production of ready-to-sell units. We embrace a vertically integrated business model with strategic design, manufacturing, distribution, sales and support centers around the world to maximize our value to customers.

At Garmin, we leverage the full potential of both public and private cloud environments to drive innovation. These platforms empower us to efficiently manage technology, staffing, and costs as we evolve our product offerings.

Our Cloud Security team plays a pivotal role in safeguarding our infrastructure, ensuring the security of both our public cloud and private cloud environments built on OpenStack. From developing policies and administrating security tools like CSPM and CWPP, to proposing and implementing security improvements, the Cloud Security team is responsible for maintaining the integrity of our cloud platforms.

We believe that collaboration leads to the best ideas, and we rely heavily on team interaction. As a hybrid role based in Cluj-Napoca, this position will require at least 3 days in the office each week. 

Responsibilities

• Act as a technical resource for cloud services running on Azure and/or AWS.
• Provide expertise in utilizing advanced cloud security tools, including Cloud Native Application Protection Platforms (CNAPP), to identify, analyze, and prevent security vulnerabilities in public cloud environments.
• Secure and manage enterprise-level container-based systems in both public and private cloud environments (EKS, AKS, OpenStack, Docker, CRI-O, Kubernetes, etc.).
• Deploy, manage, and secure public cloud infrastructure, including networking, storage, databases, compute, and application load balancing.
• Automate deployments using CI/CD tools such as GitHub Actions and Jenkins.
• Secure and manage code and image repositories, including GitHub, Bitbucket, Harbor, Docker Hub, ACR, and ECR.
• Provide technical guidance in utilizing Infrastructure-as-Code (IaC) templates such as JSON, ARM, Bicep, and CloudFormation.
• Develop innovative solutions to complex problems, demonstrating creativity and technical expertise.
• Support security capabilities for microservices and cloud-native applications in a CI/CD automated, multi-tenant environment.
• Research emerging technologies and propose cost-effective security solutions.
• Collaborate effectively within a team of Garmin associates to achieve shared goals.