Principal Security Engineer

About The Position

Requirements

• Bachelor's degree in Computer Science, Information Security, or related field (or equivalent experience).
• Proven experience in IT security, specifically with applications and databases.
• Solid experience with security auditing, preferably in a SOX-compliant environment with Internal and External auditors.
• Strong knowledge and hands-on experience with Identity and Access Management (IAM) tools.
• Understanding in programming languages such as PL/SQL, Java, and Python, with a focus on security-related functionality.
• Experience with database security tools and configurations.
• Familiarity with security monitoring tools and frameworks.
• Strong analytical and problem-solving skills, with the ability to quickly assess and mitigate security risks.
• Excellent communication skills and the ability to work effectively with cross-functional teams.

Nice To Haves

• Certifications such as CISSP, CISM, or other relevant security credentials.
• Familiarity with regulatory frameworks and standards (e.g., SOX, GDPR).
• Prior experience in a security operations or security development role.

Responsibilities

• Oversee the security and compliance of internal IT applications and databases throughout their lifecycle.
• Assist with automating auditing of user access provisioning and deprovisioning processes.
• Implement and manage security tools and configurations for database security.
• Ensure applications and databases are secured in alignment with industry standards and internal policies.
• Work closely with internal and external auditors, includes but not limited to SOX compliance, Finance Compliance and other cross-functional teams to monitor and respond to SOX and Privacy security audits.
• Utilize programming skills (PL/SQL, Java, Python) to develop and optimize security features and tools.
• Collaborate with the IT team to integrate security measures into the application and database infrastructure.
• Support the organization's compliance efforts, including adherence to SOX and other regulatory frameworks.
• Conduct regular security assessments and audits to identify and remediate vulnerabilities.
• Stay current with emerging security threats and best practices to ensure a proactive security posture.

Benefits

• Medical, dental, and vision insurance, including expert medical opinion
• Short term disability and long term disability
• Life insurance and AD&D
• Supplemental life insurance (Employee/Spouse/Child)
• Health care and dependent care Flexible Spending Accounts
• Pre-tax commuter and parking benefits
• 401(k) Savings and Investment Plan with company match
• Paid time off: Flexible Vacation is provided to all eligible employees assigned to a salaried (non-overtime eligible) position. Accrued Vacation is provided to all other employees eligible for vacation benefits. For employees working at least 35 hours per week, the vacation accrual rate is 13 days annually for the first three years of employment and 18 days annually for subsequent years of employment. Vacation accrual is prorated for employees working between 20 and 34 hours per week. Employees working fewer than 20 hours per week are not eligible for vacation.
• 11 paid holidays
• Paid sick leave: 72 hours of paid sick leave upon date of hire. Refreshes each calendar year. Unused balance will carry over each year up to a maximum cap of 112 hours.
• Paid parental leave
• Adoption assistance
• Employee Stock Purchase Plan
• Financial planning and group legal
• Voluntary benefits including auto, homeowner and pet insurance