Security Engineer (Cloud)
Nintendo · Redmond, WA
This listing has closed — view similar roles below.
- On site
- Full-time
- $168,500 / year
- Redmond, WA
Job highlights
- Secure cloud environments with advanced architecture.
- Implement identity, network, and workload protection.
- Conduct risk assessments and vulnerability testing.
- Automate security operations and incident response.
- Collaborate with engineering and IT teams.
About the role
About Nintendo of America
From the launch of the Nintendo Entertainment System™ more than 30 years ago, Nintendo’s mission has been to create smiles through unique entertainment experiences. Here at Nintendo of America Inc., we deliver on this mission by partnering closely with Nintendo Co., Ltd., to bring Nintendo’s iconic and cherished franchises including Mario™, Donkey Kong™, The Legend of Zelda™, Metroid™, Animal Crossing™, Pikmin™ and Splatoon™ across the Americas through our video games, hardware systems, and collaborations with partners on a range of other entertainment initiatives like feature films and theme parks.
Based in Redmond, Wash., Nintendo of America serves as headquarters for Nintendo’s operations in the Americas. We are an equal opportunity employer offering a welcoming and inclusive environment in service to one another, our products, and the diverse consumers and communities we call home. For more information about Nintendo, please visit the company’s website at https://www.nintendo.com/.
Team Summary
This role is within Nintendo of America (NOA)’s IT Risk & Security department, whose functions include managing compliance governance, risk management governance, security governance and disaster recovery/business continuity governance. We also define, develop, and manage Information Security at NOA while coordinating with global security teams.
Description Of Duties
- Partners with the Cloud Platform team to define, implement, and continuously improve cloud security architecture and standards, ensuring secure-by-design patterns are embedded across cloud services and workloads.
- Provides security engineering guidance for cloud platform capabilities, including identity, network segmentation, logging, monitoring, and workload protection, to enable secure and scalable cloud adoption.
- Performs risk assessments, vulnerability management, penetration testing and remediation recommendations for cloud-based technologies and applications.
- Works closely with engineering teams to proactively identify and fix security flaws and vulnerabilities.
- Works with analysts to define the functional and technical needs of an organization and recommends solutions.
- Assesses available technologies to meet needs, defines technical specifications and designs.
- Develops and modifies technology systems, addressing functional, performance, security, quality, operations, and monitoring needs.
- Deploys and integrates system monitoring and detections for malicious activity for cloud environments with existing SIEM solution.
- Works with IT Teams to grow and implement organizational security standards and provide security recommendations for services.
- Participates in infrastructure and application architecture reviews and management, as well as provides guidance on security best practices and recommendations.
- Performs analysis of security events and logs.
- Performs security reviews of existing network infrastructure deployments to identify security gaps or vulnerabilities and recommend and prioritize remediation actions.
- Engages in incident response activities.
- Provides guidance on data analysis and reporting including use of complex analysis or machine learning.
- Integrates and builds upon existing automation, security operations, and monitoring systems.
- Ensures work is completed in such a way to comply with established compliance and other internal controls.
Summary Of Requirements
- Minimum of four (4) years of related experience in various security development technologies and practices.
- Professional experience with an architectural understanding of network security and application security.
- Experience with work on complex issues where analysis of situations or data requires an in-depth evaluation of variable factors.
- Strong knowledge of networking concepts, protocols (TCP/IP, HTTP, DNS, TLS) and technologies including firewalls, TLS, IDS/IPS system, cryptographic systems, identity management systems, RADIUS, etc.
- Experience with programming/scripting (Python/Perl/bash/etc.).
- Strong understanding of networking topologies and protocols.
- Experience working in multiple security domains with a focus on risk-based analysis of anomalies, detection and response.
- Proven experience with work on complex security issues where analysis of situations or data requires an in-depth evaluation of variable factors.
- Undergraduate degree in Computer Science, a related field, or equivalent.
- Experience with responding to and management of security incidents, improving mean-time-to-detect (MTTD) and mean-time-to-respond (MTTR) through process optimization and automation.
- Understanding of cloud security tooling and technologies (AWS, Wiz preferred).
Key skills/competency
- Cloud Security Architecture
- Risk Assessment
- Vulnerability Management
- Penetration Testing
- Incident Response
- SIEM Solutions
- Network Security
- Application Security
- Python/Scripting
- AWS/Cloud Security
Skills & topics
- Cloud Security
- Security Engineer
- AWS
- Wiz
- Cybersecurity
- Risk Management
- Vulnerability Management
- Incident Response
- Python
- Network Security
How to get hired
- Tailor your resume: Highlight cloud security, scripting, and incident response experience.
- Showcase technical skills: Emphasize AWS, Wiz, Python, and networking protocols.
- Demonstrate problem-solving: Detail experience with complex security issues and evaluations.
- Prepare for interviews: Be ready to discuss security architecture and best practices.
- Understand Nintendo's culture: Align your application with their mission of creating smiles.
Technical preparation
Master cloud security principles (AWS/Wiz).,Practice scripting (Python/Perl/bash).,Study network protocols and security concepts.,Review SIEM and incident response procedures.
Behavioral questions
Describe a complex security issue resolved.,How do you ensure secure-by-design patterns?,How do you collaborate with engineering teams?,How do you prioritize security recommendations?
Frequently asked questions
- What are the key responsibilities for a Cloud Security Engineer at Nintendo?
- As a Cloud Security Engineer at Nintendo, you'll be responsible for defining and implementing cloud security architecture, providing security guidance for cloud capabilities, performing risk assessments and vulnerability management, and engaging in incident response activities. You'll also work on integrating security into cloud services and ensuring compliance with internal controls.
- What specific cloud security tools does Nintendo prefer for this role?
- Nintendo specifically mentions a preference for experience with AWS and Wiz for cloud security tooling and technologies in the job description for the Cloud Security Engineer position.
- What is the expected level of experience for a Cloud Security Engineer at Nintendo?
- Nintendo requires a minimum of four (4) years of related experience in various security development technologies and practices. Professional experience with an architectural understanding of network and application security is also crucial.
- Is this a remote position at Nintendo?
- No, this Cloud Security Engineer position is a hybrid role based in Redmond, WA. It requires regular onsite work and is not open to fully remote status at this time.
- What programming or scripting languages are important for this role at Nintendo?
- Experience with programming/scripting languages such as Python, Perl, or bash is a requirement for the Cloud Security Engineer role at Nintendo, indicating a need for automation and tool development skills.
- What are the benefits of working as a Cloud Security Engineer at Nintendo?
- Beyond the unique opportunity to work with iconic entertainment brands, Nintendo offers a comprehensive benefits package including medical, dental, vision, 401(k), and paid time off, along with potential for a semi-annual discretionary performance bonus.
- What kind of technical knowledge is essential for this Cloud Security Engineer position?
- Essential technical knowledge includes networking concepts and protocols (TCP/IP, HTTP, DNS, TLS), firewalls, TLS, IDS/IPS systems, cryptographic systems, identity management systems, RADIUS, and a strong understanding of networking topologies. Proficiency in scripting and cloud security tooling is also key.
- How does Nintendo approach security and risk management for its cloud operations?
- Nintendo's IT Risk & Security department manages compliance, risk, and security governance. For this role, they emphasize defining and improving cloud security architecture, embedding secure-by-design patterns, and performing continuous risk assessments and vulnerability management for cloud services and workloads.