Security Engineer Remote Jobs

42 Results

TripActions is hiring a Remote Staff Security Engineer, Detection and Response

Job Application for Staff Security Engineer, Detection and Response at Navan

See more jobs at TripActions

Apply for this job

+30d

Lead Security Engineer (REMOTE)

jirasalesforceDesignazure

Serigor Inc. is hiring a Remote Lead Security Engineer (REMOTE)

Lead Security Engineer (REMOTE) - Serigor Inc. - Career PageSee more jobs at Serigor Inc.

Apply for this job

+30d

Security Engineer

Mid LevelFull Time3 years of experienceremote-firstDesignc++linux

George Jon, Inc. is hiring a Remote Security Engineer

Security Engineer - George Jon, Inc. - Career PageSee more jobs at George Jon, Inc.

Apply for this job

+30d

Staff Software Engineer - Application Security

3P&T Security RecruitingEverett, WA, Remote
Designpythonjavascript

3P&T Security Recruiting is hiring a Remote Staff Software Engineer - Application Security

Job Description

They are looking for an experienced Staff Security Engineer to join their security team.  This role combines research, analysis, prevention, detection and forensics.  You will be engaged in everything from building safer and more security systems to detecting advanced (APT) attackers.  This role will require constant adaptation to new challenges that may arise in their ever-growing surface area.

In this role, you will:

  • Work with teams to discover and implement new detection capabilities and logging sources.
  • Be a thought leader in building our client's security road-map.
  • Be a security subject matter expert and respond to internal security engineering questions/requests.
  • Operate external bug bounty programs to source vulnerability information.
  • Architect, design and implement defensive systems that enhance their security.
  • Carefully balance security risk and product advancement.
  • Respond to security and privacy incidents, write incident reports, and participate in post-postmortems.
  • Perform penetration testing on their internal and external applications.
  • Integrate customer security requirements into product and system design.

Qualifications

Minimum required qualifications:

  • Bachelor's degree in Computer Science/Engineering or equivalent practical experience.
  • 8+ years of experience on security-focused teams.
  • Stellar programming/coding fundamentals.
  • Expertise working with web services deployed on Cloud providers.

The ideal candidate will also have:

  • Programming mastery in Go, Python, C/C++, JavaScript, TypeScript.
  • Demonstrated ability to ship production-quality software in a dynamic environment.
  • Strong communication skills and drive to collaborate across teams.
  • Deep knowledge with data privacy regulations and compliance e.g. SOC 2, GDPR, CCPA
  • Experience working with firmware and hardware security.

 

See more jobs at 3P&T Security Recruiting

Apply for this job

+30d

Security Engineer

terraformSailPointDesignansibleazurec++kuberneteslinuxpython

Cloudflare is hiring a Remote Security Engineer

About Us

At Cloudflare, we are on a mission to help build a better Internet. Today the company runs one of the world’s largest networks that powers millions of websites and other Internet properties for customers ranging from individual bloggers to SMBs to Fortune 500 companies. Cloudflare protects and accelerates any Internet application online without adding hardware, installing software, or changing a line of code. Internet properties powered by Cloudflare all have web traffic routed through its intelligent global network, which gets smarter with every request. As a result, they see significant improvement in performance and a decrease in spam and other attacks. Cloudflare was named to Entrepreneur Magazine’s Top Company Cultures list and ranked among the World’s Most Innovative Companies by Fast Company. 

We realize people do not fit into neat boxes. We are looking for curious and empathetic individuals who are committed to developing themselves and learning new skills, and we are ready to help you do that. We cannot complete our mission without building a diverse and inclusive team. We hire the best people based on an evaluation of their potential and support them throughout their time at Cloudflare. Come join us! 

Available Locations: Lisbon, Portugal or Austin, Texas 

About the role 

As a Security Engineer, you will play a key role in designing, implementing, and managing security technologies and the supporting infrastructure.  You will  be responsible for ensuring systems are secure, highly available, fault tolerant, and scale to meet business needs.  

Work may include documenting new standard operating procedures, ensuring vendor recommended security baseline configurations are implemented, designing repeatable deployment patterns, performing disaster recovery testing, configuring new integrations, implementing a new technology, patching applications and operating systems, performing upgrades and other maintenance tasks, documenting the as-built architecture, and participate in investigations and service restorations. 

What You’ll Do

  • Design, implement, and maintain secure infrastructure across various environments (non-production and production).
  • Ensure resilient and secure designs are implemented and maintained.
  • Drive continuous improvement while maintaining multiple environments.
  • Engage in proactive risk management and incident response planning.
  • Develop or utilize automation to streamline repeatable tasks.Contribute to the creation and dissemination of knowledge about the designs within the company.

Qualifications

  • Experience with deploying and administering Kubernetes in an enterprise environment. 
  • Experience with deploying and administering Linux systems in an enterprise environment. 
  • Experience with deploying and administering Cloudflare products (access, tunnels, waf) Experience implementing, intergrading, and  supporting identity and access management (IAM) technologies. 
  • Experience deploying and administering enterprise solutions in GCP, Azure, and AWS.Experience implementing, integrating, and supporting application security tools within a CICD pipeline environment.
  • Experience with all aspects of network infrastructure. Experience in all aspects of Site Reliability Engineering (SRE).
  • Solid understanding of reliability engineering principles and a commitment to continuous improvement.Experience writing scripts, leveraging automation, and creating infrastructure as code to streamline processes.
  • Strong analytical skills focused on service availability with curiosity and thoroughness in problem-solving.
  • Ability to navigate ambiguity, bring clarity to complex situations, and collaborate effectively with various stakeholders.

Desired Skills

  • Proficient in managing IAM related technologies like SailPoint, Saviynt, OneLogin, Ping, Okta, Azure Active Directory, Cyberark, Dilenea, or Beyond Trust in diverse environments.
  • Proficient in managing Application Security related technologies like Veracode, Checkmarx, SonarQube, Snyk, Semgrep, Fortify, or Coverity integrated into CI/CD pipelines. 
  • Strong background in deploying and supporting infrastructure and security technologies.
  • Knowledge of scripting and automation tools (e.g., Python, Terraform, Ansible).
  • Excellent communication and collaboration skills.

What Makes Cloudflare Special?

We’re not just a highly ambitious, large-scale technology company. We’re a highly ambitious, large-scale technology company with a soul. Fundamental to our mission to help build a better Internet is protecting the free and open Internet.

Project Galileo: We equip politically and artistically important organizations and journalists with powerful tools to defend themselves against attacks that would otherwise censor their work, technology already used by Cloudflare’s enterprise customers--at no cost.

Athenian Project: We created Athenian Project to ensure that state and local governments have the highest level of protection and reliability for free, so that their constituents have access to election information and voter registration.

1.1.1.1: We released 1.1.1.1to help fix the foundation of the Internet by building a faster, more secure and privacy-centric public DNS resolver. This is available publicly for everyone to use - it is the first consumer-focused service Cloudflare has ever released. Here’s the deal - we don’t store client IP addresses never, ever. We will continue to abide by our privacy commitmentand ensure that no user data is sold to advertisers or used to target consumers.

Sound like something you’d like to be a part of? We’d love to hear from you!

This position may require access to information protected under U.S. export control laws, including the U.S. Export Administration Regulations. Please note that any offer of employment may be conditioned on your authorization to receive software or technology controlled under these U.S. export laws without sponsorship for an export license.

Cloudflare is proud to be an equal opportunity employer.  We are committed to providing equal employment opportunity for all people and place great value in both diversity and inclusiveness.  All qualified applicants will be considered for employment without regard to their, or any other person's, perceived or actual race, color, religion, sex, gender, gender identity, gender expression, sexual orientation, national origin, ancestry, citizenship, age, physical or mental disability, medical condition, family care status, or any other basis protected by law.We are an AA/Veterans/Disabled Employer.

Cloudflare provides reasonable accommodations to qualified individuals with disabilities.  Please tell us if you require a reasonable accommodation to apply for a job. Examples of reasonable accommodations include, but are not limited to, changing the application process, providing documents in an alternate format, using a sign language interpreter, or using specialized equipment.  If you require a reasonable accommodation to apply for a job, please contact us via e-mail athr@cloudflare.comor via mail at 101 Townsend St. San Francisco, CA 94107.

See more jobs at Cloudflare

Apply for this job

+30d

IAM Security Engineer

CloudflareHybrid or Remote
DevOPSterraformsalesforceansibleapic++typescriptkubernetespython

Cloudflare is hiring a Remote IAM Security Engineer

About Us

At Cloudflare, we are on a mission to help build a better Internet. Today the company runs one of the world’s largest networks that powers millions of websites and other Internet properties for customers ranging from individual bloggers to SMBs to Fortune 500 companies. Cloudflare protects and accelerates any Internet application online without adding hardware, installing software, or changing a line of code. Internet properties powered by Cloudflare all have web traffic routed through its intelligent global network, which gets smarter with every request. As a result, they see significant improvement in performance and a decrease in spam and other attacks. Cloudflare was named to Entrepreneur Magazine’s Top Company Cultures list and ranked among the World’s Most Innovative Companies by Fast Company. 

We realize people do not fit into neat boxes. We are looking for curious and empathetic individuals who are committed to developing themselves and learning new skills, and we are ready to help you do that. We cannot complete our mission without building a diverse and inclusive team. We hire the best people based on an evaluation of their potential and support them throughout their time at Cloudflare. Come join us! 

Available Locations: Hybrid from Austin, TX, Washington D.C., San Francisco, CA, Mexico City, MX

About the Department
The Identity and Access Management (IAM) team is dedicated to ensuring the secure and efficient management of user identities, access privileges, and authentication mechanisms across internal systems, applications, and data. Our mission is to safeguard the organization against unauthorized access, protect sensitive information, and enable seamless user experiences while adhering to industry best practices and compliance standards.

About the Role

As an Identity and Access Management (IAM) Security Engineer, you will play a crucial role in designing, implementing, and scaling identity and access management solutions for Cloudflare’s internal workforce and workloads. You will be responsible for safeguarding our systems, applications, and data by ensuring secure user access, authentication, and authorization mechanisms.

 

What You’ll Do

  • Design, build, test, and deploy IAM solutions across authentication, authorization, and accounting 
  • Leverage Cloudflare products to secure our identities
  • Build SSO integrations leveraging SAML, OIDC, OAuth, and SCIM
  • Build and manage the Identity Governance and Administration platform
  • Develop automated roles leveraging RBAC and ABAC
  • Build and manage an access certification platform 
  • Build and manage a Privileged Access Management (PAM) platform
  • Provide operational support of IAM systems including an on-call rotation that may include after hours calls

Desirable skills, knowledge and experience

Security engineers take part in a wide variety of tasks and projects in the team. One individual is not expected to know everything, but a working knowledge in several of the following areas is required: 

  • Strong understanding of identity federation (SAML, OAuth, OpenID Connect, etc.)
  • Experience implementing Identity Governance and Administration (IGA) solutions including lifecycle management, SCIM, birthright access (RBAC, ABAC), and access certifications
  • Experience with secure configuration of containerized application platforms (e.g. Kubernetes)
  • Advanced scripting experience (Python, TypeScript, Bash, etc.)
  • Experience implementing Zero Trust controls
  • Experience integrating with applications and SaaS solutions 
  • Experience with Identity and Access Management policy application and enforcement
  • Experience working with Identity Threat Detection & Response (ITDR)
  • Experience working with infrastructure as code and configuration management tools like Terraform, Ansible, etc.

Compensation

Compensation may be adjusted depending on work location.

  • For Colorado, Illinois, Maryland and Minnesota based hires: Estimated annual salary of $137,000 - $167,000.
  • For New York City, Washington, Washington D.C. and California (excluding Bay Area) based hires: Estimated annual salary of $154,000 - $188,000.
  • For Bay Area based hires: Estimated annual salary of $162,000 - $198,000.

Equity

This role is eligible to participate in Cloudflare’s equity plan.

Benefits

Cloudflare offers a complete package of benefits and programs to support you and your family.  Our benefits programs can help you pay health care expenses, support caregiving, build capital for the future and make life a little easier and fun!  The below is a description of our benefits for employees in the United States, and benefits may vary for employees based outside the U.S.

Health & Welfare Benefits

  • Medical/Rx Insurance
  • Dental Insurance
  • Vision Insurance
  • Flexible Spending Accounts
  • Commuter Spending Accounts
  • Fertility & Family Forming Benefits
  • On-demand mental health support and Employee Assistance Program
  • Global Travel Medical Insurance

Financial Benefits

  • Short and Long Term Disability Insurance
  • Life & Accident Insurance
  • 401(k) Retirement Savings Plan
  • Employee Stock Participation Plan

Time Off

  • Flexible paid time off covering vacation and sick leave
  • Leave programs, including parental, pregnancy health, medical, and bereavement leave

What Makes Cloudflare Special?

We’re not just a highly ambitious, large-scale technology company. We’re a highly ambitious, large-scale technology company with a soul. Fundamental to our mission to help build a better Internet is protecting the free and open Internet.

Project Galileo: We equip politically and artistically important organizations and journalists with powerful tools to defend themselves against attacks that would otherwise censor their work, technology already used by Cloudflare’s enterprise customers--at no cost.

Athenian Project: We created Athenian Project to ensure that state and local governments have the highest level of protection and reliability for free, so that their constituents have access to election information and voter registration.

1.1.1.1: We released 1.1.1.1to help fix the foundation of the Internet by building a faster, more secure and privacy-centric public DNS resolver. This is available publicly for everyone to use - it is the first consumer-focused service Cloudflare has ever released. Here’s the deal - we don’t store client IP addresses never, ever. We will continue to abide by our privacy commitmentand ensure that no user data is sold to advertisers or used to target consumers.

Sound like something you’d like to be a part of? We’d love to hear from you!

This position may require access to information protected under U.S. export control laws, including the U.S. Export Administration Regulations. Please note that any offer of employment may be conditioned on your authorization to receive software or technology controlled under these U.S. export laws without sponsorship for an export license.

Cloudflare is proud to be an equal opportunity employer.  We are committed to providing equal employment opportunity for all people and place great value in both diversity and inclusiveness.  All qualified applicants will be considered for employment without regard to their, or any other person's, perceived or actual race, color, religion, sex, gender, gender identity, gender expression, sexual orientation, national origin, ancestry, citizenship, age, physical or mental disability, medical condition, family care status, or any other basis protected by law.We are an AA/Veterans/Disabled Employer.

Cloudflare provides reasonable accommodations to qualified individuals with disabilities.  Please tell us if you require a reasonable accommodation to apply for a job. Examples of reasonable accommodations include, but are not limited to, changing the application process, providing documents in an alternate format, using a sign language interpreter, or using specialized equipment.  If you require a reasonable accommodation to apply for a job, please contact us via e-mail athr@cloudflare.comor via mail at 101 Townsend St. San Francisco, CA 94107.

See more jobs at Cloudflare

Apply for this job

+30d

Senior Security Engineer

ICEYEEspoo,Uusimaa,Finland, Remote
Design

ICEYE is hiring a Remote Senior Security Engineer

Role highlights:

  • Senior Security Engineer (IAM)
  • Finland
  • Permanent
  • Remote

Who are we?

ICEYE is the global leader in synthetic aperture radar (SAR) satellite operations for Earth Observation, persistent monitoring, and natural catastrophe solutions; owning and operating the world's largest SAR constellation. ICEYE is headquartered in Finland and operates from five international locations with more than 600 employees from nearly 60 countries, inspired by the shared vision of improving life on Earth by becoming the global source of truth in Earth Observation.

Our satellites acquire images of Earth at any time – even when it’s cloudy or dark – providing commercial and government partners with unmatched persistent monitoring capabilities. Information derived from our SAR images helps customers make data-driven decisions to address time-critical challenges in various sectors, such as maritime, disaster management, insurance, and finance.

Our team is a tight-knit group of experts across many disciplines (e.g., engineering, software development, radar technology, etc.). We’re innovative, driven people who strive for excellence in everything we do. Teamwork, curiosity, and having fun are core values at ICEYE, and contribute to Making the Impossible possible!!

Why should you work for us?

ICEYE is at the cutting edge of new technology and we are continuing to build and operate our commercial constellation of SAR satellites. Working with ICEYE, you will be part of making the impossible possible, whilst shaping the Earth Observation industry. You will work with varied, diverse and engaged colleagues to further the ICEYE mission. At ICEYE we realize that without great people we can not succeed, therefore you will be an integral, valued and appreciated colleague, with the ability to directly shape the vision and direction of the business. 

We actively support Continuous Professional Development, and will provide access to a range of avenues to allow you to succeed, including courses, training and attendance at conferences. ICEYE is a place where your development, your growth and your success is a priority. 

What is the role?

As a Senior Security Engineer at ICEYE, you will leverage your expertise in Identity and Access Management (IAM)  and access control model design to overhaul existing practices and develop robust solutions for securing a modern and rapidly evolving work environment. This role is part of our Security Engineering team, which is responsible for both building a secure self-service platform for most daily developer actions and working with developers and product managers on further adopting secure development practices. The goal for the team is to gather together blue and red team experts to work together on how to best solve the cat-and-mouse game that is modern cybersecurity. Because of the collaborative nature of the work, we seek individuals who excel in collaborative environments, seek continuous improvements and have the expertise to navigate the complexities of today's threat landscape.

A typical day for you will involve collaborating with platform and development oriented teams to assess and enhance our security posture. You will start your day by reviewing security events, conducting threat analysis, and performing vulnerability assessments. Throughout the day, you will design and implement access control models, manage IAM operations, and enforce the principle of least privilege for our cloud infrastructure and services. Your IAC wizardry and craftsmanship, combined with a passion for GitHub, will drive the definition, refinement, and automation of these security concepts and processes. You'll regularly evaluate the robustness of our security controls, report any identified gaps to your peers, and propose infrastructure enhancements. This feedback loop is integral to our continuous improvement approach.

You will serve as a reference for authentication and authorization design choices and implementation details across multiple projects.

What will you need to be successful in this role?

As a Senior Security Engineer, you will bring a blend of expertise and hands-on experience to enhance our security measures:

  • Solid expertise with IAM
  • Proficiency in securing API endpoints to prevent unauthorized access and mitigate potential vulnerabilities
  • Experience implementing Zero Trust principles
  • Experience with identity provider setup and management
  • Expertise in DevSecOps and a shift-left mentality, focusing on integrating security into every stage of the development lifecycle, along with strong automation skills
  • Understanding and managing public key infrastructure (PKI) systems

In addition to the above, it would be beneficial if you had the below attributes and skills: 

  • Strong understanding and hands-on experience with OAuth2.0, OIDC, and SCIM protocols
  • Experience implementing and managing security services within AWS environments
  • Experience managing identity management platforms such as Auth0, Okta, or FusionAuth
  • Knowledge of Istio and Spire/SPIFFE
  • Understanding of OPA (Open Policy Agent)
  • Experience with Kubernetes
  • Familiarity with HashiCorp Vault

What do we offer?

  • A job that matters in a dynamic Earth Observation environment with a scale-up approach
  • An independent role with a supportive and diverse work environment
  • Occupational healthcare, occupational and private insurance
  • A yearly benefit budget to spend as you wish (i.e. on sport, transport, bike benefit, wellness, lunch, etc.)
  • Phone subscription with iPhone of choice 
  • Relocation support (i.e. flight tickets, accommodation, relocation agency support)
  • Time for self-development, research, training, conferences, or certification schemes
  • Inspiring and collaborating offices and silent workspaces enable you to focus
  • A wide variety of the best coffee, tea, snacks, and sweets to accompany your daily space mission



Base salary range 

  • 6000 to 8000 EUR per month (gross) contingent on your experience level, and will be negotiated individually 

Diversity, equity, and inclusion

At ICEYE, we believe that diversity isn't just a buzzword – it's our greatest asset. 

We're committed to fostering an inclusive environment where every voice is not only heard but celebrated. We know that diverse perspectives breed innovation and creativity, which is why we actively seek out individuals from all walks of life, backgrounds, and experiences. 

Whatever your background, we want you to bring your authentic self to the table. Join us and be part of a team where differences are not only embraced but cherished, because together, we're stronger. 

Apply now to start your ICEYE journey, and help us continue to make the impossible possible together. 

Read more about ICEYE and working with us at iceye.com 

See more jobs at ICEYE

Apply for this job

+30d

Director of Engineering, Security

MonzoCardiff, London or Remote (UK)
Designc++AWS

Monzo is hiring a Remote Director of Engineering, Security

???? We’re on a mission to make money work for everyone.

We’re waving goodbye to the complicated and confusing ways of traditional banking. 

With our hot coral cards and get-paid-early feature, combined with financial education on social media and our award winning customer service, we have a long history of creating magical moments for our customers!

We’re not about selling products - we want to solve problems and change lives through Monzo ❤️

Hear from our team about what it's like working at Monzo


 

????London or Remote (UK) | ???? This is a unique role, we’re open to discussions around base salary + stock options + Benefits

Engineering at Monzo

We’re looking for a creative, entrepreneurial and impact-focused Engineering Director to join our Security team and help us build one of the best, most innovative and secure banks in the world. 

As an Engineering Director you’ll lead a team of engineers to review and understand evolving threat models, assess our security risk landscape and set ambitious multi-year strategies for keeping our customers, the business and our employees safe and secure both now and into the future. You’ll operate with autonomy and have a massive impact on our customers’ lives and Monzo’s success.

The Security collective designs and builds systems and infrastructure to detect, mitigate, prevent and protect Monzo’s customers, its staff and its physical and virtual infrastructure from malign individuals and organisations. 

The teams work across the stack, from building custom PKI infrastructure as part of our Zero Trust security model rollout, to creating innovative customer-facing features like Call Status that helps customers know for certain if Monzo is calling them. We’ve built Multi-Person Authorisation systems to protect AWS infrastructure from being changed by a single person with access to an admin account, all the way through building automated testing frameworks, fuzzers, linters and other engineering support tooling that allow engineers to build systems that are secure by default. 

You can read more about our industry leading Call Status feature here

You should apply if you have:

  • You have experience leading an organisation of 30+ software engineers and understand the importance of good organisational design on creating effective teams
  • You have experience managing a number of Engineering Managers and/or Senior Engineering Managers.
  • You’re comfortable using data to ground your thinking in analysis, can identify key metrics and their drivers and evaluate the success of your work.
  • You make good decisions in complex situations where there’s often no right answer
  • Proven track record in designing, developing and supporting operationally excellent, high availability systems which provide critical business function
  • Experience leading complex cross-functional engineering projects
  • Proven track record of developing and managing distributed systems
  • Deep experience in managing a portfolio of concurrent engineering projects running the gamut from short-term critical feature launches to long-term strategic initiatives.
  • You must have prior experience as an engineer at senior level or higher. 

Nice to have:

  • Broad knowledge across the Security domain 

The interview process:

Our interview process involves 3 main stages: 

  1. Recruiter Call (30 mins) You'll meet our Engineering Leadership Recruiter to discuss your experience and learn more about Monzo. They'll be your partner and guide throughout the interview process.
  2. Initial Call (1 hour) You'll meet with our VP of Engineering. They'll ask you about your previous experience, in particular people leadership, product delivery and technical leadership. They’ll ask example based questions (‘Tell me about a time when…’)
  3. Loop Stage - This is one stage with 4 interviews (totalling 4 hours) split between a collaboration with one of our engineers on a technical exercise, as well as execution and leadership interviews.

At all stages we’ll create space for you to ask as many questions as you have, you’re interviewing us as well!

Our average process takes around 3-4 weeks but we will always work around your availability. You will have the chance to speak to our recruitment team at various points during your process but if you do have any specific questions ahead of this please contact us on tech-hiring@monzo.com.

What’s in it for you:

????Base salary range for this role is dependent on experience + equity + stock options & benefits 

✈️ We can help you relocate to the UK  

✅ We can sponsor visas

????This role can be based in our London office, or we're open to distributed working within the UK (with ad hoc meetings in London).

⏰ We offer flexible working hours and trust you to work enough hours to do your job well, at times that suit you and your team.

????Learning budget of £1,000 a year for books, training courses and conferences

➕And much more, see our full list of benefits here


Equal opportunities for everyone

Diversity and inclusion are a priority for us and we’re making sure we have lots of support for all of our people to grow at Monzo. At Monzo, we’re embracing diversity by fostering an inclusive environment for all people to do the best work of their lives with us. This is integral to our mission of making money work for everyone. You can read more in our blog, 2023 Diversity and Inclusion Report and 2023 Gender Pay Gap Report.

We’re an equal opportunity employer. All applicants will be considered for employment without attention to age, ethnicity, religion, sex, sexual orientation, gender identity, family or parental status, national origin, or veteran, neurodiversity or disability status.

If you have a preferred name, please use it to apply. We don't need full or birth names at application stage ????

See more jobs at Monzo

Apply for this job

+30d

Senior Security Engineer

ICEYEWarsaw,Masovian Voivodeship,Poland, Remote Hybrid
Design

ICEYE is hiring a Remote Senior Security Engineer

Role highlights:

  • Senior Security Engineer
  • Warsaw, Poland
  • Permanent
  • Hybrid

Who are we?

ICEYE is the global leader in synthetic aperture radar (SAR) satellite operations for Earth Observation, persistent monitoring, and natural catastrophe solutions; owning and operating the world's largest SAR constellation. ICEYE is headquartered in Finland and operates from five international locations with more than 600 employees from nearly 60 countries, inspired by the shared vision of improving life on Earth by becoming the global source of truth in Earth Observation.

Our satellites acquire images of Earth at any time – even when it’s cloudy or dark – providing commercial and government partners with unmatched persistent monitoring capabilities. Information derived from our SAR images helps customers make data-driven decisions to address time-critical challenges in various sectors, such as maritime, disaster management, insurance, and finance.

Our team is a tight-knit group of experts across many disciplines (e.g., engineering, software development, radar technology, etc.). We’re innovative, driven people who strive for excellence in everything we do. Teamwork, curiosity, and having fun are core values at ICEYE, and contribute to Making the Impossible possible!!

Why should you work for us?

ICEYE is at the cutting edge of new technology and we are continuing to build and operate our commercial constellation of SAR satellites. Working with ICEYE, you will be part of making the impossible possible, whilst shaping the Earth Observation industry. You will work with varied, diverse and engaged colleagues to further the ICEYE mission. At ICEYE we realise that without great people we can not succeed, therefore you will be an integral, valued and appreciated colleague, with the ability to directly shape the vision and direction of the business. 

We actively support Continuous Professional Development, and will provide access to a range of avenues to allow you to succeed, including courses, training and attendance at conferences. ICEYE is a place where your development, your growth and your success is a priority. 

What will you do in this role?

As a Senior Security Engineer you will be dedicated to protecting company assets. Responsibilities include developing a SOC toolset, monitoring, alerting, and playbook creation in a rapidly expanding company environment.

Senior Security Engineer will deeply understand SOC operations and the unique challenges of securing a modern hybrid work environment. This role is within the Security team, offering opportunities for collaboration and growth in an engaging work environment. You should demonstrate strong problem-solving skills and organizational prowess, along with expertise in navigating the complexities of today's threat landscape.

  • You will develop new security solutions and maintain existing ones to protect the company better.
  • Help build an automated SOC toolset including:
    • Tuning EDR;
    • Defining and implementing correct endpoint/server logging and ensuring coverage of all assets;
    • Ensuring all logs are optimally streamed to SIEM;
    • Ensuring all systems meet securing logging requirements;
    • Tuning SIEM logs and troubleshooting them (indexing, normalization, acceleration);
    • Creating alerts for specific TTPs and activity;
    • Creating and maintaining SOAR playbooks to automate incident workflows for common/known alerts;
    • Setting up Threat Intel gathering and integrating it into our SOAR playbooks;
    • Creating and maintaining Detection-as-Code setup to store detection logic in a code repository.
  • Help with Zero Trust, PAM, Passwordless setup, and maintenance.
  • Investigate alerts/incidents and create relevant automation and/or additional detection.
  • Identify any publicly known vulnerabilities as well as new security issues that might arise from operational and functional risks.
  • Participate in design, implementation, and review phases and lead a technical discussion concerning security mechanisms presented in a high-level and low-level design of new solutions.
  • Support the team in ongoing projects.

Required:

  • Proven experience (5+ years) in security engineering, SOC operations, system administration, or other cyber security-relevant roles.
  • Curious, with up-to-date knowledge across the cybersecurity landscape
  • Knowledge of EDR, SIEM, and SOAR tooling and implementation experience for SOC use cases, including monitoring, alerting, and playbooks.
  • Experience working with modern security principles like Privileged Access Management, Passwordless, and Zero Trust Architecture.
  • Experience in monitoring various OSes and network devices.
  • Scriptwriting skills - Bash/Python/Powershell and experience in writing scripts for monitoring.
  • Strong communication and interpersonal skills, with the ability to explain technical concepts to non-technical stakeholders.
  • Ability to work independently and collaboratively in a fast-paced, dynamic environment.

Preferred:

  • Experience with Cloud monitoring, cloud policy/alerting tools, and related best practices.
  • Base salary range for this position is 15000-23000 PLN per month (gross) contingent on your experience level, and will be negotiated individually.

Poland

  • A job that matters in a dynamic Earth Observation environment with a scale-up approach
  • An independent role with a supportive and diverse work environment
  • A yearly benefit budget to spend as you wish (MyBenefit i.e. on sport, transport, wellness, lunch, tourism, etc.)
  • Relocation support (i.e. flight tickets, accommodation, relocation agency support etc.)
  • Time for self-development, research, training, conferences, or certification schemes
  • Polish language lessons
  • Occupational and private healthcare and life insurance 
  • Inspiring and collaborating offices and silent workspaces enable you to focus
  • A wide variety of the best coffee, tea, snacks, and sweets to accompany your daily space mission

Finland

  • A job that matters in a dynamic Earth Observation environment with a scale-up approach
  • An independent role with a supportive and diverse work environment
  • Occupational healthcare, occupational and private insurance
  • A yearly benefit budget to spend as you wish (i.e. on sport, transport, bike benefit, wellness, lunch, etc.)
  • Phone subscription with iPhone of choice 
  • Relocation support (i.e. flight tickets, accommodation, relocation agency support)
  • Time for self-development, research, training, conferences, or certification schemes
  • Inspiring and collaborating offices and silent workspaces enable you to focus
  • A wide variety of the best coffee, tea, snacks, and sweets to accompany your daily space mission

See more jobs at ICEYE

Apply for this job

+30d

Security Engineer, Corporate Security

GrammarlyUnited States; Hybrid
remote-firstDesignjavac++python

Grammarly is hiring a Remote Security Engineer, Corporate Security

Grammarly is excited to offer a remote-first hybrid working model. Team members work primarily remotely in the United States, Canada, Ukraine, Germany, or Poland. Certain roles have specific location requirements to facilitate collaboration at a particular Grammarly hub.

All roles have an in-person component: Conditions permitting, teams meet 2–4 weeks every quarter at one of Grammarly’s hubs in San Francisco, Kyiv, New York, Vancouver, and Berlin, or in a workspace in Kraków.This flexible approach gives team members the best of both worlds: plenty of focus time along with in-person collaboration that fosters trust and unlocks creativity.

Grammarly team members in this role must be based in the United States, and they must be able to collaborate in person 2 weeks per quarter, traveling if necessary to the hub(s) where the team is based.

The opportunity 

Grammarly is the world’s leading AI writing assistance company, trusted by over 30 million people and 70,000 professional teams every day. From instantly creating a first draft to perfecting every message, Grammarly’s product offerings help people at 96% of theFortune500 get their point across—and get results. Grammarly has been profitable for over a decade because we’ve stayed true to our values and built an enterprise-grade product that’s secure, reliable, and helps people do their best work—without selling their data. We’re proud to be one of Inc.’s best workplaces, a Glassdoor Best Place to Work, one of TIME’s 100 Most Influential Companies, and one of Fast Company’s Most Innovative Companies in AI.

Trust is critical to Grammarly’s mission. The Enterprise Security team’s mission is to defend Grammarly’s corporate assets from all threats through risk reduction. Enterprise Security reduces risk to Grammarly by advising, supporting, building, operating, and assuring multiple critical preventive and reactive security controls in tight collaboration with teams and stakeholders across the company.

Grammarly’s engineers and researchers have the freedom to innovate and uncover breakthroughs—and, in turn, influence our product roadmap. The complexity of our technical challenges is growing rapidly as we scale our interfaces, algorithms, and infrastructure. You can hear more from our team on our technical blog.

Your impact

As a Security Engineer on the enterprise security team, you will be entrusted with the crucial responsibility of safeguarding Grammarly's corporate environment, where our amazing employees work their magic every day. From our versatile laptop fleet (Mac and Windows) to our innovative SaaS apps and other Corporate Infrastructure, you will play a vital role in ensuring our success and keeping our valuable assets secure. With a confident and thoughtful approach, you'll build and implement solutions that raise the security bar for our corporate infrastructure. If you love working on both security and operations, we are excited to have you join our dynamic team!

In this role, the Security Engineer will:

  • Contribute to designing and developing engineering solutions that support enterprise-wide security initiatives, such as Zero Trust.
  • Collaborate with our Governance Risk and Compliance (GRC) team to help develop enterprise security standards, guidelines, and policies.
  • Design, build, maintain, tune, and enhance the effectiveness of our Enterprise Security controls in a wide range of security domains, including:
    • Endpoint Detection and Response (EDR)
    • Email Security
    • Ransomware Resilience
    • Data Loss Prevention (DLP)/Insider Risk
    • Conditional Access
    • Vendor/Business Process Outsourcing (BPO) Security
    • Device Posture and Attestation, Shadow IT
    • Threat and Vulnerability Management (TVM)
    • Identity and Access Management (IAM)
    • Public Key Infrastructure (PKI)
  • Perform risk assessments and security assurance (threat modeling, code review as necessary) on a range of systems that support Grammarly’s business operations:
    • Operating Systems and commercial/open-source desktop applications
    • Internally developed Enterprise Infrastructure Services
    • Third-Party Software as a Service (SaaS) solutions
    • Network Infrastructure (ZTNA, CASB, VPN)
  • Drive the remediation of security vulnerabilities identified through assessments.
  • Build security automation to secure our corporate infrastructure.
  • Evaluate cutting-edge Enterprise Security technology designed to increase our security posture.

We’re looking for someone who

  • Embodies our EAGER values—is ethical, adaptable, gritty, empathetic, and remarkable.
  • Is inspired by our MOVE principles, which are the blueprint for how things get done at Grammarly: move fast and learn faster, obsess about creating customer value, value impact over activity, and embrace healthy disagreement rooted in trust.
  • Is able to collaborate in person 2 weeks per quarter, traveling if necessary to the hub where the team is based.
  • Is excited to build security controls to safeguard our systems and services.
  • Has working experience in Security Assurance: Penetration Testing, Code Review, Threat Modeling.
  • Is familiar with programming languages such as Python, Java, or Go for automation purposes.
  • Has a strong understanding of cybersecurity threats, vulnerabilities, and mitigations.
  • Is knowledgeable about the best practices and technologies of cloud security.
  • Has excellent problem-solving skills, with the ability to work independently and handle multiple tasks.
  • Has strong communication skills and can explain complex security issues in understandable terms.
  • Nurtures the talent in the team and raises the technical talent bar when recruiting for their team.

Support for you, professionally and personally

  • Professional growth:We believe that autonomy and trust are key to empowering our team members to do their best, most innovative work in a way that aligns with their interests, talents, and well-being. We support professional development and advancement with training, coaching, and regular feedback.
  • A connected team: Grammarly builds a product that helps people connect, and we apply this mindset to our own team. Our remote-first hybrid model enables a highly collaborative culture supported by our EAGER (ethical, adaptable, gritty, empathetic, and remarkable) values. We work to foster belonging among team members in a variety of ways. This includes our employee resource groups, Grammarly Circles, which promote connection among those with shared identities, such as BIPOC and LGBTQIA+ team members, women, and parents. We also celebrate our colleagues and accomplishments with global, local, and team-specific programs. 

Compensation and benefits

Grammarly offers all team members competitive pay along with a benefits package encompassing the following and more: 

  • Excellent health care (including a wide range of medical, dental, vision, mental health, and fertility benefits)
  • Disability and life insurance options
  • 401(k) and RRSP matching 
  • Paid parental leave
  • Twenty days of paid time off per year, eleven days of paid holidays per year, and unlimited sick days 
  • Home office stipends
  • Caregiver and pet care stipends
  • Wellness stipends
  • Admission discounts
  • Learning and development opportunities

Grammarly takes a market-based approach to compensation, which means base pay may vary depending on your location. Our US and Canada locations are categorized into compensation zones based on each geographic region’s cost of labor index. For more information about our compensation zones and locations where we currently support employment, please refer to this page. If a location of interest is not listed, please speak with a recruiter for additional information. 

Base pay may vary considerably depending on job-related knowledge, skills, and experience. The expected salary ranges for this position are outlined below by compensation zone and may be modified in the future. 

United States: 
Zone 1: $320,000 - $380,000/year (USD)
Zone 2: $290,000 - $340,000/year (USD)

We encourage you to apply

At Grammarly, we value our differences, and we encourage all—especially those whose identities are traditionally underrepresented in tech organizations—to apply. We do not discriminate on the basis of race, religion, color, gender expression or identity, sexual orientation, ancestry, national origin, citizenship, age, marital status, veteran status, disability status, political belief, or any other characteristic protected by law. Grammarly is an equal opportunity employer and a participant in the US federal E-Verify program (US). We also abide by the Employment Equity Act (Canada).

Please note that EEOC is optional and specific to US-based candidates.

#LI-PM1

#LI-Hybrid

All team members meeting in person for official Grammarly business or working from a hub location are strongly encouraged to be vaccinated against COVID-19.

 

Apply for this job

+30d

Security Engineer, Platform Security

GrammarlyUnited States; Hybrid
MLS3remote-firstterraformnosqlDesignjavac++elasticsearchpython

Grammarly is hiring a Remote Security Engineer, Platform Security

Grammarly is excited to offer a remote-first hybrid working model. Grammarly team members in this role must be based in the United States”, and, depending on business needs, they must meet in person for collaboration weeks, traveling if necessary to the hub(s) where their team is based.

This flexible approach gives team members the best of both worlds: plenty of focus time along with in-person collaboration that fosters trust and unlocks creativity.

About Grammarly

Grammarly is the world’s leading AI writing assistance company trusted by over 30 million people and 70,000 teams. From instantly creating a first draft to perfecting every message, Grammarly helps people at 96% of theFortune 500 and teams at companies like Atlassian, Databricks, and Zoom get their point across—and get results—with best-in-class security practices that keep data private and protected. Founded in 2009, Grammarly is No. 7 on the Forbes Cloud 100, one of TIME’s 100 Most Influential Companies, one of Fast Company’s Most Innovative Companies in AI, and one of Inc.’s Best Workplaces.

The Opportunity

To achieve our ambitious goals, we’re looking for a Security Engineer, Platform Security to join our Trust & Enterprise team. 

We’re looking for a Security Engineer to join our Platform Security team to achieve our ambitious goals. This person will substantially impact maintaining the trust of the millions of users who rely on Grammarly product offerings daily. They will drive security improvements across our cloud and data platform while empowering engineering teams to operate fast and safely.

Grammarly’s engineers and researchers have the freedom to innovate and uncover breakthroughs—and, in turn, influence our product roadmap. The complexity of our technical challenges is growing rapidly as we scale our interfaces, algorithms, and infrastructure. You can hear more from our team on our technical blog.

Your impact

As a Security Engineer - Platform Security, you will:

  • Collaborate closely with product and engineering teams to integrate robust security features directly into our platform.
  • Design and implement advanced tooling and processes to comprehensively monitor and secure our platform infrastructure.
  • Facilitate cross-team efforts among Cloud and Data Platform engineering groups to enhance security without compromising development speed.
  • Develop and implement security processes to identify, evaluate, and mitigate security risks across our AI products.
  • Design and Implement Just-In-Time (JIT) and role-based access controls to safeguard our production environment and customer data effectively.
  • Craft and apply a strategic cloud and infrastructure security framework, contributing to the program's strategic direction and roadmap.
  • Engage in proactive collaboration with diverse teams, from full-stack developers to ML engineers and data scientists, ensuring the integration of security best practices into every phase of the development lifecycle.

We’re looking for someone who

  • Embodies our EAGER values—is ethical, adaptable, gritty, empathetic, and remarkable.
  • Is inspired by our MOVE principles: move fast and learn faster; obsess about creating customer value; value impact over activity; and embrace healthy disagreement rooted in trust.
  • Is able to meet in person for their team’s scheduled collaboration weeks, traveling if necessary to the hub where their team is based.
  • Possesses a proven track record in enhancing security across various data platforms, including Databricks, NoSQL, ElasticSearch, S3, and Kafka.
  • Operates primarily as a 'security builder,’ working alongside engineering teams. This includes designing, implementing, and operating services with a strong focus on security.
  • Has significant experience deploying Cloud and Data Infrastructure through Terraform, CloudFormation, or Cloud Development Kit (CDK), and proficiency in programming languages such as Python, Java, and Go.

Compensation and Benefits

Grammarly offers all team members competitive pay along with a benefits package encompassing the following and more: 

  • Excellent health care (including a wide range of medical, dental, vision, mental health, and fertility benefits)
  • Disability and life insurance options
  • 401(k) and RRSP matching 
  • Paid parental leave
  • 20 days of paid time off per year, 12 days of paid holidays per year, two floating holidays per year, and unlimited sick days 
  • Generous stipends (including those for caregiving, pet care, wellness, your home office, and more)
  • Annual professional development budget and opportunities

Grammarly takes a market-based approach to compensation, which means base pay may vary depending on your location. Our US locations are categorized into two compensation zones based on proximity to our hub locations.

Base pay may vary considerably depending on job-related knowledge, skills, and experience. The expected salary ranges for this position are outlined below by compensation zone and may be modified in the future.

United States: 
Zone 1: $280,000 - $399,000/year (USD)
Zone 2: $250,000 - $350,000/year (USD)
 
For more information about our compensation zones and locations where we currently support employment, please refer to this page. If a location of interest is not listed, please speak with a recruiter for additional information.

We encourage you to apply

At Grammarly, we value our differences, and we encourage all to apply—especially those whose identities are traditionally underrepresented in tech organizations. We do not discriminate on the basis of race, religion, color, gender expression or identity, sexual orientation, ancestry, national origin, citizenship, age, marital status, veteran status, disability status, political belief, or any other characteristic protected by law. Grammarly is an equal opportunity employer and a participant in the US federal E-Verify program (US). We also abide by the Employment Equity Act (Canada).

#LI-PM1

#LI-Hybrid

 

Apply for this job

+30d

Senior Security Automation Engineer

CelonisRemote, Germany, Berlin
Bachelor's degreeDesignazureAWS

Celonis is hiring a Remote Senior Security Automation Engineer

We're Celonis, the global leader in Process Mining technology and one of the world's fastest-growing SaaS firms. We believe there is a massive opportunity to unlock productivity by placing data and intelligence at the core of business processes - and for that, we need you to join us.

The  Team:

Our Global information security organization is responsible for security and trust. We think about security-offensively and defensively. We continuously monitor our global security posture and are always adapting to the ever-changing threat landscape. The security engineering team is always looking for talented subject matter experts in application, platform and offensive security.

The Role:

Celonis is looking for talented senior security engineers to join our Security Engineering Org. You will work directly with our cloud platform to help engineer the next generation platform infrastructure stack. In order to be successful you will need to have hands-on experience in working on developing cloud systems at scale, a solid understanding of security controls, how to design enterprise systems with security in-mind, and a strong threat modeling experience. In this role, you will have the opportunity to significantly contribute to making Celonis's next generation platform infrastructure secure by design.

The work you’ll do:

  • Improve and help shape the security posture of Celonis’s Platofrm Infrastructure.
  • Design, build and deploy automation at scale that improves Celonis’s production security infrastructure. 
  • Improve monitoring and alerting across Celonis’s platform to help our SOC react to security threats quickly and efficiently.
  • Identifying areas that can improve our cloud security and engineer solutions to increase our security posture..
  • Work closely with Celonis’s infrastructure team as the subject matter expert on all things Infrastructure & Cloud Security.
  • Collaborate with Security and Engineering teams to incorporate strong security controls, apply security best practices in our development life cycle, and mitigate risks and security vulnerabilities..
  • Implement technical prototypes to understand new technologies as well as identify and manage risks for projects in active development.
  • Help the engineers around you level-up on their own security reasoning and knowledge

The qualifications you’ll need:

  • Bachelor's degree in Computer Science, Information Science, Cyber Security, Computer or Electrical Engineering (or similar field), and 2+ years in security.
  • 4+ years software development and/or security engineering experience
  • Experience with infrastructure-as-code and using automation tools like Terraform.
  • Solid understanding of what it takes to build and operate secure systems at scale.
  • Experience with multi-cloud environments, container deployments, CI/CD pipelines, and orchestration with Kubernetes.
  • Significant technical exposure with AWS, GCP and Azure services and security controls.
  • Strong desire to perform and grow as a security engineer and educate other engineers
  • Demonstrated technical initiative and leadership

 

 

What Celonis Can Offer You:

  • The unique opportunity to work with industry-leading process mining technology
  • Investment in your personal growth and skill development (clear career paths, internal mobility opportunities, L&D platform, mentorships, and more)
  • Great compensation and benefits packages (equity (restricted stock units), life insurance, time off, generous leave for new parents from day one, and more). For intern and working student benefits, click here.
  • Physical and mental well-being support (subsidized gym membership, access to counseling, virtual events on well-being topics, and more)
  • A global and growing team of Celonauts from diverse backgrounds to learn from and work with
  • An open-minded culture with innovative, autonomous teams
  • Business Resource Groups to help you feel connected, valued and seen (Black@Celonis, Women@Celonis, Parents@Celonis, Pride@Celonis, Resilience@Celonis, and more)
  • A clear set of company values that guide everything we do: Live for Customer Value, The Best Team Wins, We Own It, and Earth Is Our Future

 

About Us:

Celonis helps some of the world’s largest and most esteemed brands make processes work for people, companies and the planet. With over 5,000 enterprise customer deployments across nearly every industry, the Celonis Process Intelligence Platform uses process mining and AI to give you a living digital twin of your business operation. It’s system-agnostic and without bias, and empowers companies to reduce waste, create value and benefit people across the top, bottom, and green lines. Since 2011, the Celonis platform has enabled its customers to identify more than $18 billion in value. Celonis is headquartered in Munich, Germany, and New York City, USA, with more than 20 offices worldwide.

Get familiar with the Celonis Process Intelligence Platform by watching this video.

 

Equal Opportunity at Celonis:

Celonis is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment and equal opportunity in all aspects of employment. We will not tolerate any unlawful discrimination or harassment of any kind. We make all employment decisions without regard to race/ethnicity, color, sex, pregnancy, age, sexual orientation, gender identity or expression, transgender status, national origin, citizenship status, religion, physical or mental disability, veteran status, or any other factor protected by applicable anti-discrimination laws. As a US federal contractor, we are committed to the principles of affirmative action in accordance with applicable laws and regulations. Different makes us better

 

Your Privacy:

Any information you submit to Celonis as part of your application will be processed in accordance with Celonis’ Accessibility and Candidate Notices

Please be aware of common job offer scams, impersonators and frauds. Learn more here.

See more jobs at Celonis

Apply for this job

+30d

Sr. Security Detection Engineer

DatabricksRemote - California
MLc++python

Databricks is hiring a Remote Sr. Security Detection Engineer

Job Application for Sr. Security Detection Engineer at Databricks

See more jobs at Databricks

Apply for this job

Cobalt.io is hiring a Remote Security Engineer (Part-time contract) Remote North America

Who We Are 

Cobalt was founded on the belief that pentesting can be better. Our pentests start in as little as 24 hours and integrate with modern development cycles thanks to the powerful combination of a SaaS platform coupled with an exclusive community of testers known as the Cobalt Core. Accepting just 5% of applicants, the Core boasts over 400 closely vetted and highly skilled testers who jointly conduct thousands of tests each year. 

Our award-winning, fully remote team is committed to helping agile businesses remediate risk quickly and innovate securely. Today, over 1,000 customers use Cobalt to run pentests on demand via Pentest as a Service, AKA PtaaS, a space which Cobalt pioneered (you could even say we wrote the book on it) and continues to lead. 

Description

This role provides critical support to Cobalt TPMs and Cobalt Core Pentesters by leveraging their technical security expertise. This role is occasionally customer facing. This role will report to the Technical Security Advisor and Head of Cybersecurity Services.

What You'll Do

  • This role will provide technical support for engagement escalations. This includes reviewing logs and assessing historical performance for pentesters involved in engagements with associated escalations. 
  • This role will provide technical support for engagements as needed, such as (but not limited to) infrastructure related activities for various engagement types and logging.
  • This role will conduct regular audits of pentest engagements performed by Cobalt Core, including reviewing findings, updates, and logs.
  • This role will provide technical security enablement for TPMs
  • This role will support our AE/CSM teams with customer related technical questions
  • This role will collaborate with Delivery and Community on guidelines, communications, and enablement for pentesters. 
  • This role will support platform content by developing and improving checklists and report templates.

You Have

  • 4+ years professional pentesting experience, must include web app pentesting
  • 2+ years customer facing experience
  • Strong communication skills
  • Responsive and the ability to delivery quality at speed

Bonus If You Have

  • Project or program management experience

Diversity at Cobalt

With over 45 nationalities already at Cobalt (and counting) we respect and celebrate diversity! We’re proudly committed to equal employment opportunities regardless of your gender, religion, age, sexual orientation, ethnicity, disability, or place of origin. We support each other and are grateful for each Cobalter's contribution to our mission — let's make security dance! 

Please apply even if you don't think you meet all of the criteria above but are still interested in the job. Nobody checks every box, and we're looking for someone excited to join the team.

Why You Should Join Us

  • Grow in a passionate, rapidly expanding industry operating at the forefront of the Pentesting industry 
  • Work directly with experienced senior leaders with ongoing mentorship opportunities
  • Earn competitive compensation and an attractive equity plan
  • Save for the future with a 401(k) program (US) or pension (EU) 
  • Benefit from medical, dental, vision and life insurance (US) or statutory healthcare (EU)
  • Leverage stipends for:
    • Wellness
    • Work-from-home equipment & wifi
    • Learning & development
  • Make the most of our flexible, generous paid time off and paid parental leave 
  • Work remotely from anywhere in the US, the UK, or Germany

See more jobs at Cobalt.io

Apply for this job

+30d

Senior Security Engineer, Trust & Safety

WebflowU.S. Remote
Webflowremote-firstc++python

Webflow is hiring a Remote Senior Security Engineer, Trust & Safety

At Webflow, our mission is to bring development superpowers to everyone. Webflow is the leading visual development platform for building powerful websites without writing code. By combining modern web development technologies into one platform, Webflow enables people to build websites visually, saving engineering time, while clean code seamlessly generates in the background. From independent designers and creative agencies to Fortune 500 companies, millions worldwide use Webflow to be more nimble, creative, and collaborative. It’s the web, made better. 

As the Operations Engineer of Trust & Safety, you will report to the Director of Security, and play an essential role in keeping our platform safe.  You will understand and enforce Webflow standards and policies regarding Developer and User activity on our platform. You will lead geographically and functionally diverse teams through challenging circumstances and you will engage deeply with our XFN teams across Policy, Product, Engineering and others to help develop and execute solutions. Protecting our Webflow’s community is important to you.

About the role

  • Location: Remote-first (United States; BC & ON, Canada) 
  • Full-time 
  • Permanent
  • Exempt 
  • The cash compensation for this role is tailored to align with the cost of labor in different geographic markets. We've structured the base pay ranges for this role into zones for our geographic markets, and the specific base pay within the range will be determined by the candidate’s geographic location, job-related experience, knowledge, qualifications, and skills.
    • United States(all figures cited below in USD and pertain to workers in the United States)
      • Zone A: $162,500 - $216,050
      • Zone B: $152,700 - $203,100
      • Zone C: $143,00 - $190,150 
    • Canada(All figures cited below in CAD and pertain to workers in ON & BC, Canada)
      • CAD 184,600 - CAD 245,500
  • Please visit our Careers page for more information on which locations are included in each of our geographic pay zones. However, please confirm the zone for your specific location with your recruiter.

As the Senior Security Engineer, Trust & Safety, you will … 

  • Work with Trust & Safety team members to drive initiatives to support the strategic goals of Webflows Trust & Safety mission.
  • Work to scale Trust & Safety operations with tooling and process improvements
  • Coordinate with Webflow’s legal, security, operations and product teams, as well as external vendors, to develop and implement risk management strategies for Webflow’s platforms.
  • Drive operational execution of Product launches as they pertain to Trust & Safety
  • Wear a strategic hat to solve potential problems and stay one step ahead of roadblocks and abuse strategies.
  • Evaluate processes and craft recommendations to improve efficiency
  • Collaborate cross-functionally to develop core playbooks for Trust & Safety operations and establish best practices
  • Build, maintain, and regularly communicate detailed reporting for other leaders across the company who will use your team's insights to inform and improve their own operations and strategy

About you

You’ll thrive as (a) Senior Security Engineer, Trust & Safety if you have the following:

  • Minimum of 3+ or more years of full stack web application software development experience building tooling for Trust & Safety
  • Ability to work effectively and cross-functionally with all levels of management, both internally and externally
  • A passion for data analysis and reporting
  • Expertise in process improvement to identify and enhance operational efficiencies.
  • Project management skills (PMP or other project management certification a plus)
  • Data Analysis: Strong analytical skills are required, preferably with experience in using data analysis tools or software. 
  • You should be capable of interpreting complex data, identifying trends, and making data-driven decisions.
  • Ideal experience includes coding experience in NodeJS and/or Python

In the context of this role, individuals may be exposed to potentially disturbing & sensitive content (e.g., graphic, violent, sexual, or egregious), and will need a level of resilience and maturity. We care for our employees' safety and well-being and ensure that they have the support and resources needed to execute the responsibilities of their roles through our comprehensive wellness and health benefits programs.

If you don’t meet 100% of the above qualifications, you should still seriously consider applying. Studies show that you can still be considered for a role if you meet just 50% of the role’s requirements.

Our Core Behaviors:

  • Obsess over customer experience. We deeply understand what we’re building and who we’re building for and serving. We define the leading edge of what’s possible in our industry and deliver the future for our customers
  • Move with heartfelt urgency. We have a healthy relationship with impatience, channeling it thoughtfully to show up better and faster for our customers and for each other. Time is the most limited thing we have, and we make the most of every moment
  • Say the hard thing with care. Our best work often comes from intelligent debate, critique, and even difficult conversations. We speak our minds and don’t sugarcoat things — and we do so with respect, maturity, and care
  • Make your mark. We seek out new and unique ways to create meaningful impact, and we champion the same from our colleagues. We work as a team to get the job done, and we go out of our way to celebrate and reward those going above and beyond for our customers and our teammates

Benefits & wellness

Equity ownership (RSUs) in a growing, privately-owned company100% employer-paid healthcare, vision, and dental insurance coverage for employees and dependents (full-time employees working 30+ hours per week), as well as Health Savings Account/Health Reimbursement Account, dependent care Flexible Spending Account (US only), dependent on insurance plan selection where applicable in the respective country of employment; Employees may also have voluntary insurance options, such as life, disability, hospital protection, accident, and critical illness where applicable in the respective country of employment12 weeks of paid parental leave for both birthing and non-birthing caregivers, as well as an additional 6-8 weeks of pregnancy disability for birthing parents to be used before child bonding leave (where local requirements are more generous employees receive the greater benefit); Employees also have access to family planning care and reimbursementFlexible PTO with a mandatory annual minimum of 10 days paid time off for all locations (where local requirements are more generous employees receive the greater benefit), and sabbatical programAccess to mental wellness and professional coaching, therapy, and Employee Assistance ProgramMonthly stipends to support health and wellness, smart work, and professional growthProfessional career coaching, internal learning & development programs401k plan and pension schemes (in countries where statutorily required) financial wellness benefits, like CPA or financial advisor coverageDiscounted Pet Insurance offering (US only)Commuter benefits for in-office employees

Temporary employees are not eligible for paid holiday time off, accrued paid time off, paid leaves of absence, or company-sponsored perks unless otherwise required by law.

Remote, together

At Webflow, equality is a core tenet of our culture. We are an Equal Opportunity (EEO)/Veterans/Disabled Employer and are committed to building an inclusive global team that represents a variety of backgrounds, perspectives, beliefs, and experiences. Employment decisions are made on the basis of job-related criteria without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other classification protected by applicable law. Pursuant to the San Francisco Fair Chance Ordinance, Webflow will consider for employment qualified applicants with arrest and conviction records.

Wellbeing Statement

Trust & Safety recognizes that keeping our platform safe for Webflow communities is no ordinary job. It can be rewarding, psychologically demanding, and emotionally taxing. This is why we are sharing the potential  risks and implications for this unique line of work from the start: so our candidates are well informed before proceeding.

 

We are committed to the wellbeing of all our employees and promise to provide comprehensive and evidence-based programs, to promote and support physical and mental wellbeing throughout each employee's journey with us. 

 

Stay connected

Not ready to apply, but want to be part of the Webflow community? Consider following our story on our Webflow Blog, LinkedIn, X (Twitter), and/or Glassdoor

Please note:

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Upon interview scheduling, instructions for confidential accommodation requests will be administered.

Based on the San Francisco Fair Chance Ordinance, Webflow will consider for employment qualified applicants with arrest and conviction records.

To join Webflow, you'll need a valid right to work authorization depending on the country of employment.

If you are extended an offer, that offer may be contingent upon your successful completion of a background check, which will be conducted in accordance with applicable laws. We may obtain one or more background screening reports about you, solely for employment purposes.

For information about how Webflow processes your personal information, please reviewWebflow’s Applicant Privacy Notice



See more jobs at Webflow

Apply for this job

+30d

Security Engineer

Deutsche Telekom IT SolutionsDebrecen, Hungary, Remote
linuxpython

Deutsche Telekom IT Solutions is hiring a Remote Security Engineer

Job Description

Within DT-Technik, we are looking for an ambitious and experienced colleague in the security area (T-SRC) for the Security Operations Center Technik (SOCT) squad. The Squad SOCT offers comprehensive services for the security of DT Technik's networks and systems.

  • Security monitoring in SIEM (Security Information and Event Management), Elastic Endpoint Protection (EPP) and other sources.
  • Monitor and investigate security events and incidents using established processes and procedures
  • Categorizing and reporting incidents following established procedures
  • Create and update incident logs, ensuring accurate and thorough documentation
  • Prepare lessons learned reports to enhance incident response processes
  • Maintaining and updating detection rulesets following established processes
  • Development and operation of automatic end-to -end test chain for cyber attack detection rules (SIEM, IDS, EPP)
  • Bug fixing and optimisation of the tested detection rules
  • Development of missing detection rules

Qualifications

  • IT Security experience
  • Technical knowledge and experience with at least one well-known SIEM or security analytics solution
  • Solid knowledge of Windows and Linux operation systems
  • General knowledge of web security, network protocols, devices, services, and related technologies (TCP/IP, Firewall, IPS/IDS, web proxy)
  • Understanding of host-based security tools such as anti-virus and EDR
  • In-depth knowledge of cybersecurity principles, technologies and best practices
  • Demonstrated understanding of threat landscapes, attack vectors, and vulnerabilities
  • Experience in programming and/or scripting languages (Powershell, Python)
  • Strong analytical and problem-solving skills, ability to analyze logs of various devices, solutions
  • Reliable English communication skills (both written and verbal)

See more jobs at Deutsche Telekom IT Solutions

Apply for this job

+30d

Sr. Security Engineer

ScienceLogicReston, VA or Remote
Bachelor's degreeremote-firstDesignc++

ScienceLogic is hiring a Remote Sr. Security Engineer

What we’re looking for…

ScienceLogic is looking for a Senior Security Engineer who will design and implement systems and procedures to sustain the security, integrity, and availability of the organization's data. Assess risk of exposure of proprietary data through weaknesses in platforms, access procedures, and forms of access to the organization's systems and the data contained in them. Track security violations and identify trends or exposures that could be addressed by additional training, technical measures, or use of application tools to enhance security. May participate in ethical simulated attacks or security violations to assess the organization's data security measures.

 

What you’ll be doing…

  • Conduct platform or operating system vulnerability scans that assess exposure of system to attacks or hacking. Monitor Security Operations pager and respond to issues of potential viral activity, spam, phishing.
  • Administer controls and review their application to ensure that system's controls, policies, and procedures are operating effectively relative to the predicted effectiveness of the controls.
  • Investigate events or incidents of apparent security breaches and report to appropriate authorities using corporate procedures.
  • Collaborate with internal and external auditors to ensure that appropriate controls are installed, operating properly, and being monitored and reported.
  • May plan and/or conduct tests of the core infrastructure and the contingency environment for critical business applications to ensure business continuity in the event of a computer security incident.
  • Aggregate metrics of operation of security controls, as well as apparent attacks, breaches, and other pertinent data; track trends and prepare for periodic security reports.
  • Measure and improve patch management procedures with appropriate teams.
  • Participate in projects designed to test defenses against hacking, denial of service, spam, break-ins, or similar attacks. May provide guidance to infrastructure or application staff participating in exercise.
  • Examine and/or test new methodologies or tools that could be adopted to enhance security of platforms, infrastructure, or access to data.
  • Other duties as required.

 

Qualities you possess…

 

  • US Citizenship with the ability to obtain a public trust clearance required.
  • Bachelor's Degree or equivalent required.
  • Applicable certifications are desired.
  • 5+ years of related experience in an IT Security related field.
  • 5+ years of experience as system or network administrator or a support specialist in a SOC environment.
  • Solid understanding of basic fundamentals in TCP/IP and the OSI model as well as common routing protocols.
  • Experience with SOC 2 and/or ISO 27001 audits and certifications.
  • Experience working with Firewalls and IDS technologies .
  • Problem solving skills complimented with experience in solving information security device and application issues with customers is a must.
  • SOC/NOC experience desired. Good verbal and written communication skills as well as attention to detail.
  • Exceptional customer service skills and interpersonal skills. Ability to work in small teams.
  • Must be able to resolve highly complex and technical business problems.
  • Understanding of threat agents, attack vectors, and attack patterns as well as compensating controls and design patterns needed to mitigate risk.
  • Possesses a broad domain level of expertise to resolve complex issues and performs detailed network analysis across a broad range of network and other technologies both on premise as well as cloud and hosted environments.
  • Demonstrated skills on technical procedures development (equipment configuration) for testing and implementation of design changes.
  • Create technical documentation and diagrams using Microsoft Visio, Excel, Word and PowerPoint.
  • Knowledge of single sign-on integration with on premise and cloud toolset.
  • Knowledgeable of Network Design and Project Management methodologies.
  • Excellent presentation/verbal communication skills.

 

Recommended Certifications or Skills

  • Security+
  • Associate CISSP
  • Associate SSCP
  • Associate CCSP
  • OS/Linux/Windows/macOS
  • Directory Services
  • Microsoft Security Center, Intune, Defender
  • Network Protocols
  • Scripting Languages (Python/Bash/PowerShell)

 

 

 

Benefits & Perks

  • A remote-first culture - work from home or come into the office, it's totally up to you.
  • Comprehensive medical, dental and vision plans.
  • 401(k) plan with employer match.
  • Flexible Paid Time Off (FTO) so that you can take the time that you need to re-energize.
  • Volunteer Time Off (VTO) - take two days off per calendar year to volunteer with your preferred charitable organization.
  • 5-year Service Milestone Sabbatical.
  • Paid parental leave.
  • Generous employee referral bonus program.
  • Pet insurance.
  • HQ Office centrally located in Reston Town Center featuring a well-stocked kitchen with rotating snacks and beverages, and catered lunch on Thursdays.
  • Regular virtual company-wide events, including cooking classes, yoga, meditation and more.
  • The opportunity to learn and develop from some of the best and brightest minds in the industry!

 

Don’t meet every single requirement? Studies have shown that women and people of color are less likely to apply to jobs unless they meet every single qualification. At ScienceLogic, we are dedicated to building a diverse, inclusive and authentic workplace, so if you’re excited about this role but your past experience doesn’t align perfectly with every qualification in the job description, we encourage you to apply anyways. You may be just the right candidate for this or other roles.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or any other applicable legally protected characteristics in the location in which you are applying.

 

 

About ScienceLogic

We empower intelligent and automated IT operations.

The ScienceLogic SL1 platform enables companies to digitally transform themselves by removing the difficulty of managing complex, distributed IT services. We use patented discovery techniques to find everything in your IT environment, so you get visibility across all technologies and vendors running anywhere in your data centers or clouds

 

www.sciencelogic.com

 

All ScienceLogic employees have the responsibility to protect information assets, adhere to access controls, report suspicious activity, and comply with security and privacy policies.

 

See more jobs at ScienceLogic

Apply for this job

+30d

Senior Security Engineer - Detection and Response

FastlyUS (Remote)
RustagileDesignrubyc++linuxpythonAWS

Fastly is hiring a Remote Senior Security Engineer - Detection and Response

Fastly helps people stay better connected with the things they love. Fastly’s edge cloud platform enables customers to create great digital experiences quickly, securely, and reliably by processing, serving, and securing our customers’ applications as close to their end-users as possible — at the edge of the Internet. The platform is designed to take advantage of the modern internet, to be programmable, and to support agile software development. Fastly’s customers include many of the world’s most prominent companies, including Vimeo, Pinterest, The New York Times, and GitHub.

We're building a more trustworthy Internet. Come join us.

As a Senior Security Engineer on our Detection and Response team, you will help detect and respond to threats for one of the biggest online platforms in the world that handles massive amounts of traffic at very low latency.

We are looking for a teammate with expertise in both security engineering and operations and that values the complement between the two. You will have the opportunity to build and integrate tooling and detections, as well as investigate threats and lead incidents. As part of the larger Security organization, we make risk-informed decisions and prioritize automations to help us scale. In this role, you will help design, build, and mature our detection and response program, enabling rapid detection and effective response to threats against Fastly.

What You'll Do:

  • Develop detections and other analytics to identify threats across cloud, corporate, and edge environments
  • Partner closely with Engineering, Security Architecture, Risk Management, Compliance, and other teams to prioritize detections and delivery of other security initiatives
  • Triage and investigate security threats and lead security incidents
  • Research, evaluate, implement, and maintain a variety of custom and commercial security tools, such as Endpoint Detection and Response (EDR), anti-phishing, and Security Information and Event Monitoring (SIEM)
  • Develop strategies, frameworks, designs, automations, metrics, and processes to support the maturity of the Detection and Response program
  • Develop and maintain incident response playbooks and other detection and response documentation
  • Conduct threat hunts to discover unknown malicious activity across our environment
  • Participate in our on-call rotations
  • Mentor other team members and contribute to larger Security initiatives

What We're Looking For: 

At Fastly we value a diversity of voices. The following is not a laundry list, but to be effective in this role you should possess most of the following and an interest in learning more about the rest:

  • Experience in utilizing Splunk to include investigating threats, developing metrics and dashboards, normalizing data feeds, and integrating with other tools
  • Familiarity of attacker tactics, techniques, and procedures (TTPs) and investigating advanced threats
  • Experience in evaluating, implementing, configuring, tuning, and maintaining Endpoint Detection and Response solutions
  • Experience with at least one major public cloud infrastructure, such as Amazon Web Services (AWS) or Google Cloud Platform (GCP)
  • Experience in effectively leading large and complex security incidents from detection to remediation
  • Familiarity with modern security frameworks and best practices, such as the MITRE ATT&CK framework and NIST CSF
  • Proficiency in one or more general purpose programming languages such as Python, Ruby, Go, or Rust
  • Experience with Linux administration at scale, associated intrusion/manipulation techniques, and standard methodologies for system hardening and process isolation

We’ll be super impressed if you have experience in any of these: 

  • Developed “detections-as-code”
  • Conducted threat hunts
  • Published research on detection engineering or threat intelligence
  • Developed automations to improve security operations
  • Familiarity with content delivery networks (CDN), edge cloud platforms, or other Fastly products and services

Work Hours:

This position will require you to be available during core business hours and support an on-call rotation. 

Work Locations & Travel Requirements: 

This position is open to both hybrid and remote work. 

The preferred locations for this position are:

  • San Francisco, CA 
  • Los Angeles, CA 
  • Denver, CO 
  • New York City, NY

Fastly currently embraces a largely hybrid model for most roles which allows employees flexibility to split their time between the office and home.  

We are willing to consider remote candidates in US (Remote). 

This position may require travel as required by your role or requested by your manager.

Salary: 

The estimated salary range for this position is $181,220 - $226,520.

Starting salary may vary based on permissible, non-discriminatory factors such as experience, skills, qualifications, and location.

This role may be eligible to participate in Fastly’s equity and discretionary bonus programs.

Benefits: 

We care about you. Fastly works hard to create a positive environment for our employees, and we think your life outside of work is important too. We support our teams with great benefits that start on the first day of your employment with Fastly. Curious about our offerings? 

We offer a comprehensive benefits package including medical, dental, and vision insurance. Family planning, mental health support along with Employee Assistance Program, Insurance (Life, Disability, and Accident), a Flexible Vacation policy and up to 18 days of accrued paid sick leave are there to help support our employees. We also offer 401(k) (including company match) and an Employee Stock Purchase Program. For 2024, we offer 10 paid local holidays, 11 paid company wellness days. 

Why Fastly?

  • We have a huge impact. Fastly is a small company with a big reach. Not only do our customers have a tremendous user base, but we also support a growing number of open source projects and initiatives. Outside of code, employees are encouraged to share causes close to their heart with others so we can help lend a supportive hand.

  • We love distributed teams. Fastly’s home-base is in San Francisco, but we have multiple offices and employees sprinkled around the globe. As a new hire, you will be able to attend our IN-PERSON new hire orientation in our San Francisco office! It is an exciting week-long experience that we offer to new employees to build connections with colleagues across Fastly, participate in hands-on learning opportunities, and immerse yourself in our culture firsthand. 

  • We value diversity. Growing and maintaining our inclusive and diverse team matters to us. We are committed to being a company where our employees feel comfortable bringing their authentic selves to work and have the ability to be successful -- every day.

  • We are passionate. Fastly is chock full of passionate people and we’re not ‘one size fits all’. Fastly employs authors, pilots, skiers, parents (of humans and animals), makeup geeks, coffee connoisseurs, and more. We love employees for who they are and what they are passionate about.

We’re always looking for humble, sharp, and creative folks to join the Fastly team. If you think you might be a fit please apply!A fully completed application and resume or CV are required when applying.

Fastly is committed to ensuring equal employment opportunity and to providing employees with a safe and welcoming work environment free of discrimination and harassment. Our employment decisions are based on business needs, job requirements and individual qualifications.All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, family or parental status, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances.

Consistent with the Americans with Disabilities Act (ADA) and federal or state disability laws, Fastly will provide reasonable accommodations for applicants and employees with disabilities. If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact your Recruiter, or the Fastly Employee Relations team atcandidateaccommodations@fastly.comor 501-287-4901. 

Fastly collects and processes personal data submitted by job applicants in accordance with our Privacy Policy. Please see our privacy notice for job applicants.

See more jobs at Fastly

Apply for this job

+30d

Senior Security Engineer - Incident Response

Thirty MadisonRemote, US
terraformDesignc++AWS

Thirty Madison is hiring a Remote Senior Security Engineer - Incident Response

Senior Engineer l, Security

We are looking for a dedicated Security Engineer to join our growing team. This Security Engineer will be working alongside an existing team of experienced security engineers and partnering closely with technologists across the company to help build digital health security and protect our patients here at Thirty Madison! We serve our patients from start to finish, and security works the same way, all the way from the deepest infrastructure to the patient experience, we want our patients to be safer by being with Thirty Madison. Above all, you embody the Thirty Madison mission of providing access to healthcare for all who suffer from chronic conditions.

Comp | Perks | Benefits 

  • The base pay range for this position is $152,800 - $210,100 per year.** 
  • Annual Incentive Plan + Stock Option Package
  • Robust and affordable Medical, Dental, and Vision plan options 
  • 401(k) with a match, commuter benefits, and FSA
  • Annual $750 vacation stipend and $500 happiness stipend
  • Flexible time off policy

**Base pay offered may vary depending on job-related knowledge, skills, and experience. An annual incentive plan and stock options may be provided as part of the compensation package, in addition to a full range of medical, financial, and/or other benefits, dependent on the position offered.

What you get to do every day

  • Build and mature a threat hunting program.
  • Detect and respond to security incidents and participate in an incident on-call rotation
  • Develop innovative ways to detect security incidents.
  • Design and build the security for the future of our infrastructure.
  • Partner with the infrastructure team, engineering team, compliance team and within security teams to maintain and further improve our cloud security posture.
  • Create solutions and processes to identify, resolve and mitigate security vulnerabilities and risks.
  • Research threats and attack vectors that impact Thirty Madison’s applications and infrastructure.
  • Devise and bolster defense-in-depth through secure-by-default frameworks, architectures and processes.
  • Mentor and share security standards and processes with all parts of the organization.

What you bring to the role

  • Expertise responding to complex incidents across endpoint, network, and cloud.
  • Capable of understanding an unfamiliar system enough to successfully respond to an incident involving the system.
  • Expertise in detection engineering.
  • Experience with SIEM, EDR, and CSPM tools.
  • Deep understanding of the threat landscape.
  • Experience with assessing risks.
  • Experience in cloud security, especially for AWS, anything to do with IAM, secure configuration of services, AWS native security services like AWS Cloudtrail, SCP’s, AWS Org, Config etc.
  • Ability to understand the whole solution, not just the technology.
  • Focus on the end to end lifecycle of solving a problem and solutioning for it and not just implementing a security technology. Have a well-rounded view for problem solving.
  • Deep care for the patient and your fellow employees experience as you surpass security challenges.
  • Hunger to drive decision making, collaboration and to have deeper opinions on security design.
  • You can review different design choices and can understand/discuss pros and cons for each.
  • Ability to code to automate tedious tasks.
  • Experience with Infrastructure as Code. We use terraform!
  • Strong collaboration skills with the wider security team and engineering at Thirty Madison

All Company policies and procedures are subject to change without notice based on business needs. This includes, but is not limited to, the locations where we hire remote, hybrid, or onsite employees.

U.S. Applicants Only

Don’t meet every single requirement? Studies have shown that women and people of color are less likely to apply to jobs unless they meet every single qualification. At Thirty Madison we are dedicated to building a diverse, inclusive and authentic workplace, so if you’re excited about this role but your past experience doesn’t align perfectly with every qualification in the job description, we encourage you to apply anyways. You may be just the right candidate for this or other roles.

We are proud to be an equal opportunity workplace committed to building a team culture that celebrates diversity and inclusion.

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions. Contact us at recruiting@thirtymadison.com to request accommodation.

About Thirty Madison 

Thirty Madison is a family of specialized healthcare brands devoted to creating exceptional outcomes for all. Each of its specialized brands is focused on a specific ongoing condition, and thoughtfully designed to support the unique needs of its community with personalized treatments and care; with Keeps for men's hair loss, Cove for migraine,  Facet for skin conditions, and NURX for sexual health. With empathy at the heart of its innovation, its proprietary care model empowers hundreds of thousands of people with ongoing conditions with the accessible, effective treatments across a lifetime of care. In just four years, we’ve built a number of brands and are continuing to grow rapidly, recently raised a $140m Series C, and are backed by some of the best healthcare and consumer investors, including HealthQuest Capital, Mousse Partners, Bracket Capital, Polaris Partners, Johnson & Johnson, Maveron, Northzone, among others.

We are honored to becomeGreat Place to Workcertified and be included on BuiltIn's 2021 list ofBest Places To Work in New York City, andBest Midsize Companies To Work For. We've also been recognized by Forbes' Best Startup Employers, being named as one of America's Best Places to Work 2022. This recognition is a true testament to our hardworking team and company culture. As we continue to grow, we pride ourselves on finding passionate individuals who truly embody our core values and mission each and every day. Learn more at ThirtyMadison.com

*This employer participates in E-Verify and will provide the federal government with your I-9 Form information to confirm that you are authorized to work in the U.S.*

*Please be aware that there are fraudulent entities who are falsely claiming to be or represent Thirty Madison in order to solicit sensitive personal information or payment. Thirty Madison is not in any way associated with these entities or practices. The safety and integrity of those seeking employment with us is of the utmost importance and we actively work with our legal and security teams to prevent future incidents. 

Thirty Madison will never ask for sensitive information or payment when engaging with job seekers. The entities use many methods to perpetuate these scams, including but not limited to: participating in a text-only interview, using Thirty Madison’s trademarks on their correspondence, or providing you with a seemingly legitimate offer letter. If you suspect you are a victim of this scamming, we encourage you to cease further contact and report the crime to The Federal Trade Commission.

See more jobs at Thirty Madison

Apply for this job

Databricks is hiring a Remote Security Engineer, Incident Response

Job Application for Security Engineer, Incident Response at Databricks

See more jobs at Databricks

Apply for this job