Cyber Security Engineer (Cloud Security)

We are seeking a full-time Cyber Security Engineer 2 at Garmin's U.S. headquarters in the Greater Kansas City area. In this role, you will be responsible for ensuring adherence to Garmin's cloud information security strategy, programs, and best practices. This role supports the implementation and operation of technical cloud security controls (CNAPP, CSPM, CWPP), threat management, vulnerability management, cloud platform protection controls, and logging. This role is a specialist in cloud security and must respond promptly and effectively to possible breaches of security in the Garmin cloud ecosystem.

Essential Functions

• Serve as a trusted advisor to other cybersecurity teams and to Garmin business segments on multiple domains in cybersecurity
• Collaborate across a team of highly skilled security professionals, promoting knowledge transfer, skill development, and a culture of continuous learning and improvement
• Identify opportunities to enhance tool integrations and workflows through automation and scripting, leveraging APIs provided by security tools
• Contribute to project and program planning by estimating and coordinating assigned work, and maintaining accurate, timely status updates on overall progress
• Design and develop complex, integrated solutions to meet business requirements and enhance the performance of Garmin’s security systems
• Contribute to the team roadmap and priorities
• Participate in the evaluation and adoption of emerging security technologies to improve threat detection, prevention, and response
• Serve as a technical security resource for cloud services running on Azure and/or AWS
• Provide security-focused technical guidance to engineers running services in the public cloud
• Partner with the business to ensure services deployed in the cloud are secure, available, and meet Garmin and regulatory requirements for security
• Participate in the support and operation of cloud security tools, including cloud native application protection platform (CNAPP) tooling, to identify, analyze, and prevent public cloud exploits
• Automate manual tasks using a scripting language such as Python, PowerShell, or BASH
• Develop and deploy infrastructure using IAC templates such as JSON, ARM, Bicep, and Cloud Formation
• Provide expertise on modern security, infrastructure, software development, and application technologies
• Support security capabilities for microservice and cloud-native applications in a CI/CD automated, multi-tenant application environment
• Automate deployments through CI/CD tools such as GitHub Actions and Jenkins, ensuring reliable and efficient delivery processes
• Utilize and securely manage code and image repositories such as GitHub, Bitbucket, Harbor, Docker Hub, ACR, and ECR to support development and delivery workflows
• Provide security support for enterprise level container-based systems in public and private cloud environments (EKS, AKS, OpenStack, Docker, CRI-O, Kubernetes, etc.)
• Deploy, manage, and secure public cloud infrastructure—including network, storage, compute, database, and load-balancing resources—to support stable and secure operations

Basic Qualifications

• Bachelor's Degree in Computer Science, Information Technology, Management Information Systems, Business or another relevant field AND a minimum of 2 years of relevant experience OR an equivalent combination of education and relevant experience
• Communicate effectively with team members and stakeholders through strong verbal, written, and interpersonal skills
• Contribute positively to a collaborative, team-focused environment
• Proactively solve moderately complex problems with a strong, solutions-oriented mindset and a track record of delivering effective resolutions
• Manage time, priorities, and follow-up tasks independently
• Consistently deliver well-organized, high-quality documentation aligned with team expectations
• Understand core information technology services such as networking, storage, databases, and web-based services
• Experience deploying, managing, and securing public cloud services
• An understanding of container-based platforms and related services
• Familiar with developer tooling such as code repositories and CI/CD platforms

Desired Qualifications

• Experience with Azure or AWS public cloud services

Garmin International is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, citizenship, sex, sexual orientation, gender identity, veteran's status, age or disability.

This position is eligible for Garmin's benefit program. Details can be found here: Garmin Benefits