Cybersecurity Engineer at 2U

What We’re Looking For:

• The Cybersecurity Engineer will be a key contributor to 2U’s efforts to maintain a secure and resilient technology environment. This role requires a blend of technical expertise and a proactive mindset to identify, assess, and mitigate security risks across cloud, application, and infrastructure layers.
• This position focuses on implementing scalable security solutions, automating security processes, and integrating security best practices into operational workflows and development pipelines. The ideal candidate has broad experience in cybersecurity, hands-on familiarity with DevOps/DevSecOps practices, and an aptitude for learning and applying new technologies.

Responsibilities Include, But Are Not Limited To:

• Security Operations and Implementation
• Deploy and maintain security controls to protect cloud, application, and infrastructure resources.
• Monitor and analyze security events, identifying and mitigating potential threats.
• Develop tools and scripts to automate security processes and enhance visibility.
• DevOps/DevSecOps Practices
• Embed security into CI/CD pipelines, enabling automated detection and remediation of vulnerabilities.
• Implement and manage container security measures for platforms like Docker and Kubernetes.
• Collaborate with engineering and operations teams to ensure security is an integral part of workflows.
• Infrastructure and Cloud Security
• Support the configuration and security of cloud environments, with a focus on AWS.
• Develop and manage Infrastructure-as-Code (IaC) templates to enforce security standards.
• Perform periodic reviews and updates to IAM roles, security groups, and other cloud configurations.
• Application Security
• Assist in identifying and mitigating vulnerabilities in application code and dependencies.
• Support secure development practices, such as code reviews and automated scanning tools.
• Help maintain security for APIs, web applications, and microservices.
• Proactive Risk Management
• Conduct security assessments to identify gaps and recommend improvements.
• Implement tools and processes for continuous vulnerability scanning and remediation.
• Contribute to compliance initiatives such as SOC 2, PCI, and ISO 27001.

Things That Should Be In Your Background:

• 3+ years of experience in cybersecurity, DevOps, or a related field.
• Hands-on experience with public cloud platforms, particularly AWS (GCP or Azure is a plus).
• Proficiency in programming or scripting languages (e.g., Python, Bash).
• Familiarity with CI/CD tools like Jenkins, GitHub Actions, or GitLab CI/CD.
• Knowledge of container security tools and practices.
• Experience with web application firewalls (WAF) for protecting applications and APIs.
• Strong analytical and problem-solving skills, with an ability to work independently.