Senior/Staff Security Engineer
Platform Science
·
Posted:
April 29, 2023
·
Remote
About the position
We are seeking a highly skilled Security Engineer to join our team. You will be responsible for identifying and addressing vulnerabilities, ensuring the security and compliance of our infrastructure, and implementing best practices to protect our systems and data. As a Senior Security Engineer, you will have a deep understanding of security principles and technologies, and be able to apply them to real-world scenarios.
Responsibilities
- Design and implement security solutions to protect the organization's systems and data
- Stay up to date on the latest security threats and vulnerabilities and implement measures to protect against them
- Investigating and aiding in security incident response
- Collaborate with other teams within the organization to improve overall security posture
- Conduct security assessments of systems, networks, and applications
- Work with a continuous security platform to help identify and prevent threats across multi-cloud environments
- Understanding and implementing security configuration and compliance policies
- Identify and fix vulnerabilities in open-source dependencies in application development
- Ensure a highly secure, compliant cloud computing architecture
- Ensure adherence to standard regulatory and compliance requirements by overseeing regular 3rd party security audits and penetration testing
- Understand customer base data security needs and applicable standard compliance requirements, and help design solutions fulfilling those requirements
- Configure, troubleshoot, and maintain security infrastructure software and hardware such as vulnerability scanners, security logging, IAM, etc.
- Experience with the application of threat modeling or other risk identification techniques
Requirements
- Design and implement security solutions to protect the organization's systems and data
- Stay up to date on the latest security threats and vulnerabilities and implement measures to protect against them
- Investigating and aiding in security incident response
- Collaborate with other teams within the organization to improve overall security posture
- Conduct security assessments of systems, networks, and applications
- Work with a continuous security platform to help identify and prevent threats across multi-cloud environments
- Understanding and implementing security configuration and compliance policies
- Identify and fix vulnerabilities in open-source dependencies in application development
- Ensure a highly secure, compliant cloud computing architecture
- Ensure adherence to standard regulatory and compliance requirements by overseeing regular 3rd party security audits and penetration testing
- Understand customer base data security needs and applicable standard compliance requirements, and help design solutions fulfilling those requirements
- Experience with cloud-native security and understanding of cloud-native technologies (e.g. Kubernetes, AWS, Azure)
- Knowledge of regulatory compliance requirements (e.g. SOC2)
- Experience with modern security tools and suites like Lacework, Palo Alto, Snyk
- 5+ years of development experience in Go, Python, Terraform, or equivalent technologies
- 5+ years of experience with cloud compliance, risk management, information security, and/or common industry security standards such as COBIT, SABSA, ISO27001, and NIST
- Strong knowledge of security principles and technologies
- Experience with security testing and incident response
- CI/CD pipeline integration for tracking dependency vulnerabilities
- Strong problem-solving skills, attention to detail, excellent communication, and leadership skills
- Experience with cloud privileges, tenant isolation, and RBAC solutions at an enterprise scale
- Configure, troubleshoot, and maintain security infrastructure software and hardware such as vulnerability scanners, security logging, IAM, etc.
- Experience with the application of threat modeling or other risk identification techniques
Benefits
- Medical, dental, and vision insurance
- Short-term and long-term disability insurances
- AD&D and life insurance
- 401k plan
- Paid vacation, sick leave, and holidays
- Six weeks of paid parental leave