Security Engineer III (IAM/Cloud)

About The Position

Requirements

• Bachelor’s degree in Computer Science, Information Systems, or Engineering.
• Typically 5 or more years of engineering or application development experience.
• Minimum 3 years of IT Security experience.
• Experience or certifications for enterprise vulnerability scanning platforms and vulnerability management frameworks.
• Experience or certifications for enterprise endpoint security tools, anti-virus or DLP.
• Expert understanding of Linux and Windows administration.
• Proficiency in Python scripting language to support automation and operational efficiency.
• Expert understanding of networking concepts including routing, layer 2 and layer 3, and NAT.
• Expert understanding of firewall ruleset design in an enterprise setting along with packet capture interpretation.
• Proficiency in SSL/TLS certificate management, certificate chains and request/issue/renew procedures.
• Eligibility to work in the United States, for any employer, at the date of hire.
• Must be able to perform essential functions and physical requirements of position with or without reasonable accommodation.

Nice To Haves

• Experience with audit procedures and producing audit artifact documents.
• Additional scripting proficiency in JavaScript, Linux shell and/or Powershell.
• Certifications: one of CISSP, CCNA, or CISA desirable.

Responsibilities

• Upgrading and patching application software and operating systems.
• Tracking and replacing certificates and remediating vulnerabilities found on our equipment.
• Working with operations staff to ensure security tools are integrated into other corporate infrastructure.
• Working with auditors to ensure security tools are supporting all compliance efforts.
• Defining gaps that are not being met by our current toolset and researching solutions to meet them.
• Proactively monitoring the health of all tools owned by the team; initiating any needed maintenance or remediation required, following established processes.
• Ensuring that tools are running vendor supported versions, including operating system, and supporting applications.
• Tracking and completing all compliance related documentation on time.
• Addressing any gaps following established processes.
• Identifying opportunities to automate repeatable processes and driving the project to implementation.
• Assisting other security teams in security incident resolution and risk assessments.
• Maximizing value of tools already purchased.
• Contributing to the development of Early Warning security policy and procedures.
• Complying with all company and department policies and procedures to ensure the highest level of data confidentiality, integrity and availability is maintained.
• On-call rotation with other security engineers to cover 24x7 response.
• Working with other security engineering staff and ensuring cross training to raise the skill level of the team overall.
• Mentoring junior security engineering staff and managing security interns.
• Supporting the company's commitment to protect the integrity and confidentiality of systems and data.

Benefits

• Competitive medical (PPO/HDHP), dental, and vision plans
• Company contributions to your Health Savings Account (HSA) or pre-tax savings through flexible spending accounts (FSA) for commuting, health & dependent care expenses.
• 401(k) Retirement Plan – Featuring a 100% Company Safe Harbor Match on your first 6% deferral immediately upon eligibility.
• Flexible Time Off for Exempt (salaried) employees, as well as generous PTO for Non-Exempt (hourly) employees
• 11 paid company holidays
• A paid volunteer day
• 12 weeks of Paid Parental Leave
• Maven Family Planning – provides support through your Parenting journey including egg freezing, fertility, adoption, surrogacy, pregnancy, postpartum, early pediatrics, and returning to work.