Principal Cloud Security Engineer

| Remote
Apply Now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.
Reporting to the Head of Security Engineering as part of the Global Platform Security Team at IHS Markit, your role is a hands-on player-coach role primarily focused on leading technical efforts for a sub-team of security engineers responsible for the administration, development, deployment, and extension of security tools. You should have experience mentoring and developing junior team members and have in-depth experience of software development, cloud security for AWS, GCP and Azure, as well as expertise developing large-scale CSPM, SOAR, UEBA, and DLP projects. Additionally, this role will be called upon for network security and identity management as it relates to access to cloud and hybrid environments.
  • Developing, and mentoring members of a security engineering team. Setting Standard Operating Procedures, development paths, and on-the-job training no matter their level.
  • Deep expertise of Identity Management across cloud providers and industry identity stores such as Microsoft AD, ADFS, Okta, SAML, Amazon Cognito, AWS IAM/SCPs, SSO, and similar.
  • Insisting on the highest standards for secure software development within Global Platform Security Team.
  • Partnering with Architecture teams to make recommendations of configurations and remediation efforts across different environments.
  • Managing commercial, open-source, and cloud-provider security tools from basic administration to extensions of functionality. Responsible for building data ingestion pipelines to move data for further analysis and enrichment to other parts of the Platform Security team.
  • Development and deployment of multi-cloud (AWS, GCP, Azure) automated playbooks, log enrichment orchestration, and other SOAR workloads - both with a commercial tool and custom builds as needed.
  • Coordinating engineering work across the Global Platform Security team in support of Offensive Security, Application Security, Vulnerability Management, and Data Science as needed.
  • Working with Detection Engineering teams to build and tune ingestion into SIEM, SOAR, UEBA and DLP tools. Working with Network Operations to manage security appliances, provide recommendations for hybrid networking, and forward applicable logs to the Detection Engineering team.
  • Working with vendors and partners for the purpose of conducting RFPs, RFIs, POCs, and managing long-term relationships with chosen vendors and partners for commercial tooling.

You have
  • 5+ years of proven experience as a hands-on security leader managing both traditional and cloud security teams with a focus on engineering and partnership with other information security teams
  • Thorough understanding of security best practices, particularly around building secure infrastructure and identity management
  • Deep expertise in scripting language on Windows and Linux-based operations systems. (Python is primarily desired)
  • Deep expertise with an infrastructure as code (IAC) tool (CloudFormation is primarily desire)
  • DevSecOps expertise with automation technologies for the development of large-scale and highly available CI/CD and security automation using cloud native tools
  • While not required, experience with compliance frameworks is highly desired
  • Experience working with host-based controls in a large, decentralized environment such as anti-virus/anti-malware, host-based IDS/IPS, DLP, SOAR, UEBA, and digital forensics tools Ability to create and aggregate security data engineering pipelines to collect various logs across multiple accounts and environments
  • Strong architectural and business analysis knowledge highly desired - able to work with project management resources to define and commit work to an agile iteration
  • Network security experience relative to securing traditional and VDI/DaaS deployments on AWS (AWS WorkSpaces, AWS AppStream 2.0, AWS Cloud9) is desired
  • While not required, experience developing and securing microservices (Kubernetes, Istio/AWS App Mesh, Calico) is highly desired

You are
  • An advocate and a mentor - you can teach junior and senior members of the team and are willing to contribute to cloud security thought leadership throughout IHS Markit
  • A naturally curious self-starter - you can deliver on requirements with some limited guidance or supervision, as needed by you and the team
  • A relentless learner - you actively seek to add to your skillset and knowledge base while challenging the status quo to drive efficiency in the team
  • Strong interpersonal skills - you can communicate with a wide range of technical and non-technical teams
  • Insist on the highest standards within the team and actively share your perspectives with the team and the larger information security organization

What we offer
  • Competitive base salary, bonus plans and equity.
  • A comprehensive, benefits package that includes medical, dental, vision and life insurance plans, paid time off, a generous 401k match with no vesting period, parental leave and 3 volunteering days each year. For more information on benefits, please access the benefits page on our careers site:
  • For work locations in the state of Colorado, the anticipated minimum base salary for this role would be $120,302. Compensation will be determined by the education, experience, knowledge, and abilities of the applicant.

Inclusion and diversity are critical to the success of IHS Markit, and we actively encourage applications from people of all backgrounds. We are committed to providing equal employment opportunity without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability, status as a protected veteran, or any other protected category. For more information on the many ways in which we enthusiastically support inclusion and diversity efforts for both candidates and employees, please access our Inclusion & Diversity Statement here.
We are proud to provide reasonable accommodations to applicants with disabilities. If you are interested in applying for employment with IHS Markit and need special assistance or an accommodation to use our website or to apply for a position, please contact or call +1 212 849 0399. Determination on requests for reasonable accommodation are considered on a case-by-case basis. This contact information (email and phone) is intended for application assistance and accommodation requests only. We are unable to accept resumes or provide information about application status through the phone number or email address above. Resumes are only accepted through the online application process, and only qualified candidates will receive consideration and follow-up.
IHS Markit maintains a substance-free workplace; employees may be asked to submit to a drug test (where permitted by law). In addition, because we are a United States (US) federal contractor, we are requiring all US employees to be fully vaccinated against COVID-19, unless they have been approved for an accommodation due to a medical reason or a sincerely held religious belief. The company also participates in the E-Verify Program to confirm eligibility to work in the US.
For information please click on the following links:
IHS Markit Business Code of Conduct
Right to Work
EEO is the Law
EEO is the Law Supplement
Pay Transparency
Current Colleagues
If you are currently employed by IHS Markit, please apply internally via the Workday internal careers site.
Read Full Job Description
Apply Now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

Technology we use

  • Engineering
  • Product
    • .NETLanguages
    • C#Languages
    • C++Languages
    • JavascriptLanguages
    • SwiftLanguages
    • jQueryLibraries
    • ReactLibraries
    • AngularJSFrameworks
    • ASP.NETFrameworks
    • Node.jsFrameworks
    • Vue.jsFrameworks
    • CassandraDatabases
    • Microsoft SQL ServerDatabases
    • MySQLDatabases
    • RedisDatabases
    • Google AnalyticsAnalytics
    • IllustratorDesign
    • InVisionDesign
    • PhotoshopDesign
    • SketchDesign
    • ConfluenceManagement
    • JIRAManagement
    • Microsoft ProjectManagement


We may consider Upslope Brewing and OZO Coffee our external conference rooms. If food trucks are your jam we have plenty right outside our doors!

An Insider's view of Markit Digital

What’s the vibe like in the office?

Uniqueness and creativity can be seen in all areas here! We have a digital community bulletin board where you can buy, sell, or post just about anything (seriously, anything!), a company sponsored picnic that includes spirited cornhole competitions, and regular group outings like running or cycling, before, during, or after work.


Executive Director, Sales

How do you collaborate with other teams in the company?

My teammates and I come from a diverse set of backgrounds and combine our unique perspectives to provide innovative solutions to problems. As a result, our products push new boundaries and delight our clients.


Product Management Director

What are some things you learned at the company?

I’ve learned to appreciate and be intentional. My teammates are always ready to help each other find a better workflow, learn new tools, and support each other emotionally. This culture of support and collaboration inspires me to contribute by creating amazing work for our clients and being creative in connecting with colleagues intentionally.


UI Designer

How would you describe the company’s work-life balance?

Our culture promotes hard work while also living a fulfilling life outside of the office. We all love spending time working together on challenging projects, and when the time comes to get away, the support is felt throughout the company. Whether it's an extended vacation or volunteer opportunity to give back to our community!


Associate Creative Director, UI Design

What are Markit Digital Perks + Benefits

Markit Digital Benefits Overview

• Global paid sick leave of a minimum of 10 days*
• Global paid care leave of 10 days* each calendar year, to care for your spouse/domestic partner, child, parent or grandparent who has a serious illness or health condition.
• Global paid parental leave of 26 weeks* for all parents, regardless of gender, to be taken within the first year of welcoming a child through birth, adoption, fostering, or surrogacy. Note: if both parents work for the combined organization, both parents are eligible for this leave.
• Global paid compassion leave: You are entitled to paid compassion leave following the loss of a close relative or loved one.
• Unpaid leave of up to 8 weeks (you do not have to use any other leave before taking this leave).
• Unpaid sabbatical leave of up to 6 months to be used to educate, innovate, gain knowledge and/or pursue individual interests.
• Day off for your birthday**
• Day off for your service anniversary**
• Day off for personal wellbeing on a date that you choose

Volunteer in local community
We each get 3 days a year to volunteer and will help match you with existing opportinities.
Partners with Nonprofits
Friends outside of work
Eat lunch together
Intracompany committees
We have ample opportunities to join committees! We've got guilds, a Pride committee, a crafting club, a book club, a green team, a parenting community and several more.
Daily sync
Open door policy
Team owned deliverables
Team based strategic planning
Group brainstorming sessions
Pair programming
Open office floor plan
Documented equal pay policy
Dedicated Diversity/Inclusion Staff
Unconscious bias training
Diversity manifesto
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability Insurance
Dental Benefits
Vision Benefits
Health Insurance Benefits
Life Insurance
Pet Insurance
Wellness Programs
Team workouts
Retirement & Stock Options Benefits
401(K) Matching
Company Equity
Restricted share unites (RSU's) may be grated recognizing performance.
Performance Bonus
Match charitable contributions
Child Care & Parental Leave Benefits
Generous Parental Leave
Flexible Work Schedule
Life happens and we trust our colleagues to get the work they committed to done.
Remote Work Program
COVID-19 has provided us the opportunity to quickly acclimate to working remotely and we are establishing new guidelines as we continue to learn.
Family Medical Leave
Vacation & Time Off Benefits
Generous PTO
Paid Volunteer Time
Paid Holidays
Paid Sick Days
Perks & Discounts
Casual Dress
Commuter Benefits
Company Outings
Stocked Kitchen
Recreational Clubs
Fitness Subsidies
Professional Development Benefits
Job Training & Conferences
Diversity Program
Lunch and learns
Cross functional training encouraged
Promote from within
Mentorship program
Time allotted for learning
We all want the opportunity to learn and grow. You and your manager can talk about what makes sense for you and your team.
Online course subscriptions available
Customized development tracks

Additional Perks + Benefits

To name a insurance, ECO pass, loaner bikes and secure bike storage, showers + locker room onsite, food trucks every day and regular visits from Sweet Cow Ice Cream.

More Jobs at Markit Digital

Apply Now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.
Save jobView Markit Digital's full profileSee more Markit Digital jobs