Security Engineer Remote Jobs

98 Results

1h

Software Security Engineer

Designmongodbc++postgresqlAWS

Sambasafety is hiring a Remote Software Security Engineer

Who we are:

Hi, we’re SambaSafety and we offer the industry’s most comprehensive driver monitoring software. Our technology helps everyone from large corporations to small companies ensure only the safest individuals are driving on behalf of their business. These companies trust SambaSafety to keep their employees safe on the roads, helping protect their brand, greater community and bottom line. Simply put, we save lives and are on a mission to reduce crashes on American roadways 20 percent by 2025. 

We’ve built an inclusive, supportive, and exceptional culture where every employee is empowered in their role. Don’t take our word for it;  we’ve been recognized as a Top Workplace  by The Denver Post and Built In Colorado. And our employees rate SambaSafety  top-notch,  with a rock solid 4.7-star rating on Glassdoor.

What You’ll Do:

  • Evolve our Application Security program through collaboration with the software development, cloud architecture, and operations teams to build a security-first culture.
  • Engage with a broad range of technologists and business professionals allowing you to develop experience with emerging cloud-native technology and data driven SaaS platforms.
  • Demonstrate leadership in both the security and developer communities as you’ll be helping shape the security roadmap for the engineering organization.
  • Share expertise of tools and best practices that empower developers to meet requirements for security across all phases of the development lifecycle.
  • Assist with continuous refinement and implementation of the SambaSafety cyber security strategy by providing feedback gathered from the engineering teams. 
  • Produce periodic, high-quality reports illustrating program status, areas for improvement and success attributes aligning to the SambaSafety security roadmap. 
  • Remain current with new security threats and DevSecOps best practices.
  • Demonstrate security expertise both within SambaSafety and in the industry at large.
  • Assist in aligning the Application Security program with regulatory compliance requirements.
  • Monitor and communicate threat intelligence from various security system resources.
  • Drive and support the remediation of vulnerabilities found in our software products.
  • Respond to cyber security incidents by gathering data and artifacts relevant to the event.

What you’ll need:

  • 3-5 years’ experience in application security and/or software development roles.
  • Bachelor’s degree in computer science or equivalent relevant experience.
  • Demonstrated skill in application security and/or software development with a focus on secure design and coding practices.
  • Exhibit detailed understanding of security threats especially within a cloud-native environment.
  • Proven capability to advocate for security best practices in terms of business value and enablement.
  • Established experience successfully leading large-scale projects across multiple business functions.
  • Effective verbal and written communication skills, including presentation and the ability to influence beyond reporting structure.
  • Experience in forensic methodologies and best practices to investigate intrusions, preserve evidence and coordinate a unified security response.
  • Solid understanding of common design patterns including when you would use them.
  • Extensive knowledge of software, network, and system security vulnerabilities and exploits.
  • Experience working in a highly regulated business environment.
  • Experience with cloud technology (AWS preferred)
  • Experience conducting application security assessments, threat modeling, or secure code reviews.
  • Broad understanding of encryption algorithms and correct application of them.
  • Broad database technology knowledge (for example: MSSQL, PostgreSQL, MongoDB).
  • Ability to work in a constantly changing environment under tight deadlines.
  • Working knowledge of OWASP Top 10, OWASP SAMM, or BSIMM.
  • Working knowledge of Windows, MacOS, and Linux.
  • Working knowledge of CI/CD tools and cloud-native development practices.
  • Highly trustworthy; leads by example.
  • CISM, CSSLP, Security+ or other industry certification a plus.

*Salary:$110k-$130k

Benefits and Perks:

  • Unlimited Paid Time Off and Paid Volunteer Days
  • 401k match and generous Healthcare Benefits including a fully employer paid family medical plan
  • Wellness &Tuition Reimbursement
  • Zoom Happy Hours
  • Flexible Work From Home schedule
  • Lots of Samba swag
  • Samba Virtual Events including our famous Samba Sprint

Our team of talented and committed safety professionals is exceptional. At SambaSafety we strive to foster an inclusive culture that supports, encourages and celebrates a wide array of diversity. We are committed to create a space where all employees can show up as their authentic selves every day, and we work to advance employee equality, diversity and inclusion.

SambaSafety provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, gender identity, and expression or genetics.

Come join us to find out for yourself what all the excitement is about!

 

 

See more jobs at Sambasafety

Apply for this job

1h

Systems Security Engineer

mongodbc++postgresqlAWS

Sambasafety is hiring a Remote Systems Security Engineer

Who we are:

Hi, we’re SambaSafety and we offer the industry’s most comprehensive driver monitoring software. Our technology helps everyone from large corporations to small companies ensure only the safest individuals are driving on behalf of their business. These companies trust SambaSafety to keep their employees safe on the roads, helping protect their brand, greater community and bottom line. Simply put, we save lives and are on a mission to reduce crashes on American roadways 20 percent by 2025. 

We’ve built an inclusive, supportive, and exceptional culture where every employee is empowered in their role. Don’t take our word for it;  we’ve been recognized as a Top Workplace  by The Denver Post and Built In Colorado. And our employees rate SambaSafety  top-notch,  with a rock solid 4.7-star rating on Glassdoor.

What You’ll Do: 

  • Evolve our Cyber Security program through collaboration with the site-reliability engineering, cloud architecture, and operations teams to build a security-first culture.
  • Demonstrate leadership in both the security and engineering as you’ll be helping shape the security roadmap for the engineering organization.
  • Produce periodic, high-quality reports illustrating program status, areas for improvement and success attributes aligning to the SambaSafety security roadmap. 
  • Remain current with new security threats and DevSecOps best practices.
  • Assist in aligning the Cyber Security program with regulatory compliance requirements.
  • Monitor and communicate threat intelligence from various security system resources.
  • Drive and support the remediation of vulnerabilities found in our software products.
  • Respond to cyber security incidents by gathering data and artifacts relevant to the event.
  • Share expertise with security architecture, threat modeling, secure application. development, and developing security controls architecture patterns.
  • Interact with pen testing and red teaming activities.
  • Perform security tasks including (but not limited to) threat modeling, secure code review, training, static and dynamic analysis, and automated and manual security testing.
  • Remain current on emerging security risks, trends and technologies and share with team.
  • Identify recurring problems and recommend proactive measures to eliminate them.
  • Develop, maintain, and improve IT security tools.
  • Harden IT systems, services, and networks.

 

What you’ll need:

  • 3-5 years’ experience in systems / architecture security
  • Bachelor’s degree in computer science or equivalent relevant experience.
  • Exhibit detailed understanding of security threats especially within a cloud-native environment.
  • Effective verbal and written communication skills, including presentation and the ability to influence beyond reporting structure.
  • Experience in forensic methodologies and best practices to investigate intrusions, preserve evidence and coordinate a unified security response.
  • Extensive knowledge of software, network, and system security vulnerabilities and exploits.
  • Experience working in a highly regulated business environment.
  • Expert knowledge of Windows, MacOS, and Linux.
  • Experience mentoring and developing less experienced engineers on security practices.
  • Knowledge of data structures, algorithms, and algorithmic runtime analysis.
  • Broad understanding of encryption algorithms and correct application of them.
  • Broad database technology knowledge (for example: MSSQL, PostgreSQL, MongoDB)
  • Working knowledge and application of OWASP top 10
  • Skills with SIEM, vulnerability scanning, database access management, PKI, DAST/SAST, and other security tools.
  • Experience with Amazon Web Services (AWS).
  • Technical self-starter and self-directed.
  • Enthusiasm for team-oriented project work.
  • Experience with designing and developing security controls for cloud native architectures.
  • Meticulous attention to detail and accuracy.
  • Show tact, discretion, confidentiality and good judgement in handling sensitive and confidential matters and documentation.
  • CISSP Certification.
  • CCSP Certification or ability to acquire certification within 12 months of employment.
  • Additional certifications such as CISM, AWS, etc.

*Salary: $110k-$130k

Benefits and Perks:

  • Unlimited Paid Time Off and Paid Volunteer Days
  • 401k match and generous Healthcare Benefits including a fully employer paid family medical plan
  • Wellness &Tuition Reimbursement
  • Zoom Happy Hours
  • Flexible Work From Home schedule
  • Lots of Samba swag
  • Samba Virtual Events including our famous Samba Sprint

Our team of talented and committed safety professionals is exceptional. At SambaSafety we strive to foster an inclusive culture that supports, encourages and celebrates a wide array of diversity. We are committed to create a space where all employees can show up as their authentic selves every day, and we work to advance employee equality, diversity and inclusion.

SambaSafety provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, gender identity, and expression or genetics.

Come join us to find out for yourself what all the excitement is about!

#BIRemote

See more jobs at Sambasafety

Apply for this job

Sectigo, Inc. is hiring a Remote Endpoint Security Engineer

JOB SUMMARY:

The Endpoint Security Engineer is a highly technical role that will be responsible to protect Sectigo employees, data and computing platforms ensuring security measures are at the highest security standards. This is a comprehensive security role focusing on endpoint protection, identity management, email, and cloud application security. Continual assessment and improvement of all faucets of endpoint computing is essential and is how the success of this position will be measured.

 

JOB RESPONSIBILITIES:

· Assess, maintain and implement security measures on Windows 10/11 end user computing devices which include device compliance policies and configuration profiles.

· Investigate devices that do not adhere to device compliance and configuration policies and bring them into compliance.

· Daily review of the Microsoft 365 Defender console to identity threats and vulnerabilities that pose significant risk to endpoints, email, identities, and cloud applications.

· Serve as an escalation point for suspected or confirmed security incidents that the 24x7 managed Security Operations Center (SOC) cannot resolve.

· Work with the SOC to create and tune alert policies for threat vectors that can impact endpoints, email, collaboration platforms, identities and cloud applications. New alert policies created shall have procedures for the SOC to address the alert.

· Create and maintain a vulnerability management program that keeps end user computing devices up to date on operating system and application patches and retires legacy systems and applications.

· Properly document, prioritize and execute all security and compliance related initiatives and keep technical documentation up to date.

· Develop and create regular (weekly and monthly) InfoSec security control reports.

· Assist in developing and updating security policies and participates in related compliance audits.

· Research security enhancements and make recommendations to management.

· Interface with external vendors as needed while working on security initiatives.

· Responsible for continuously reviewing industry-related security and compliance topics and proactively initiating timely changes when necessary.

· Regularly communicate with management and staff to interpret and enforce security practices and procedures.

· Participate to the on-call rotation and out-of-business hours maintenance work as needed.

QUALIFICATIONS:

 

EDUCATION:

· Bachelor’s degree from an accredited institution, with degree preferred in Computer Science or Information Technology Systems Security or related field.

 

PREFERRED CERTIFICATIONS:

· CISSP

· Microsoft Security Engineer Certification Path

· CEH

 

EXPERIENCE:

· 3+ years of end user computing and/or information security experience in security operations

 

SKILLS AND ABILITIES:

· Experience with utilizing Microsoft 365 Security console to respond to threats and manage security across identities, data, devices, apps, and infrastructure.

· Successful and hands on practical experience in monitoring, investigating, responding to and resolving security threats, breaches and other cybersecurity incidents.

· Must be able to communicate to employees and management about security and threats

· PowerShell scripting

· Ability to establish priorities, work independently and proceed with objectives with minimal supervision.

· Must be able to work in a global, deadline driven and fast paced environment.

See more jobs at Sectigo, Inc.

Apply for this job

1d

Principal Security Engineer

AnitianBeaverton, OR, USA, Remote
agilepythonAWS

Anitian is hiring a Remote Principal Security Engineer

Company Description

At Anitian we believe security can be a force for good.  As such, we are on a mission to make security and compliance easy for all. We harness the power and scale of the cloud to empower developers with automated, accelerated, autonomous, and accommodating security technologies.

Anitian is a place where smart people get to be smart. When you join our team, you will enjoy a workplace of creative problem solvers who cherish intelligence, compassion, and boldness.  You will also enjoy the immediate respect of industry peers, as Anitian is recognized as a thought leader in information security.

________________________________________________________________________________

COVID-19 Notice: During the pandemic, Anitian is conducting all interviews online with video conference technology. New employees are being onboarded virtually and provided the tools they need to begin employment working remote from home.

When our offices re-open, this position will report to our Beaverton, OR HQ.

________________________________________________________________________________

Job Description

We’re on a mission to continue industry disruption through rapid evolution of our SecureCloud Compliance Automation stack.  Our customers achieve FedRAMP certification quickly and predictably, and our SecOps team continuously maintains security and compliance levels.  A significant part of FedRAMP is providing continuous monitoring, threat and vulnerability detection, anomaly detection, and customer interaction.  We seek leaders that act as force multipliers, persistently planning and designing automation that scales with the growing customer base, using machines (and machine learning) to perform work that humans audit and improve.  The ideal candidate will be excited about working in an environment in which it is paramount to keep abreast with the ever-changing landscape of security vulnerabilities and threats.

The Principal Engineer is a key role – expected to fluidly interface directly with multiple stakeholders, including executives, staff, and adjacent department members, both internally and client-facing. The role requires agility to assist and triage issues ranging from sales/marketing questions, collaborating with Program Managers to ensure multi-tiered projects run smoothly, and direct Security Engineering assistance.  Most importantly, this role requires a sound technical strategy and persistent execution against long-term goals which are defined by you and leadership.

Qualifications

Experience

  • Six + years of engineering experience in public cloud systems, network, and hardening complex security infrastructure.
  • Five years of experience working in public cloud environments, such as AWS or Azure.
  • Proven ability to leverage automation to create tooling and utilities to help scale
  • Proven ability to establish technical leadership

Desired Background

  • You have deep and broad cloud infrastructure security experience and you are constantly thinking about ways to implement improvements to security operations
  • You have working expertise in all common components of least one public cloud, preferably AWS
  • You are independent, and identify “high leverage” work and execute against it without being asked
  • You write clean, readable, maintainable software in Python or another scripting language
  • You have operations experience running production software, operating a large cloud application and/or infrastructure deployment, and creating, tuning alert thresholds, and triaging alerts
  • You work well with other people and actively coach junior members of the team, effectively interacting with your internal customers and stakeholders.
  • You are curious, and you are not afraid to learn and embrace, or recommend new security technologies
  • You have deep knowledge of what a clean-running SIEM looks like and can set the direction for the team to prune false positives and elevate actionable, customer-impacting alerts
  • You work diligently with engineering teams and frequently log high value backlog items and champion the right priorities. 
  • Display effective time and ticket management and influence others through leading by example

 

Additionally, the perfect candidate will have:

  • Extremely strong written and verbal communication skills
  • Knowledge of Agile and/or other modern project management structures
  • Awareness of compliance structures such as PCI, HIPAA, or FedRAMP
  • Ability to adapt to constantly changing technology landscape
  • Effective ability to understand and implement complex systems
  • Strong time management skills and ability to determine priorities
  • Professional and positive attitude – understand the importance of mutual respect between teams

Additional Information

Flexible Work Environment:  We offer our employees flexibility in their work location. Whether you prefer to work onsite at our Beaverton, OR, headquarters office, work fully remote from your home, or a hybrid solution, we have a place for you.

Please note: All remote work must be performed within the United States.

..

Benefits of this position include:

  • Competitive compensation package, including stock options.
  • Four weeks of PTO per year with additional PTO earned with years of service.
  • Eleven paid holidays.
  • We offer competitive health benefits including medical, dental, vision, FSA/HSA, EAP, life insurance and disability benefits.
  • 401K retirement plan, up to 4% matching.
  • Professional development reimbursement program.
  • Internet Subsidy

More Information

  • For more information about working with Anitian, please visit our careers page.
  • Anitian participates in E-Verify. More information available here.

See more jobs at Anitian

Apply for this job

1d

Commercial Security Engineer

TenableRemote, United States
azureapidockerpythonAWS

Tenable is hiring a Remote Commercial Security Engineer

Description

Your Role:

Tenable is seeking a Commercial Sales Engineer to drive Technical and Business value aspects of strategic selling in your assigned region. You will be partnering with Territory Sales Managers and a strong team of peers to differentiate the Tenable solutions from our competitors, create lasting customers by positioning the unique business value they are looking for and most importantly, create raving fans of Tenable throughout your area of influence.
Your Opportunity:

  • Become a Cyber Exposure, Vulnerability and Risk Management Subject Matter Expert and advisor to some of the world’s largest organizations
  • Meet with prospective clients to discover what their biggest security challenges and highest priority business drivers are
  • Map Tenable’s unique business value and differentiators to their challenges and business drivers
  • Perform custom portfolio demonstrations based on strong discovery questions and real intel
  • Partner with like-minded peers across Tenable to build exceptionally strong teams and shared knowledge
  • Influence product directions, make a difference, and be part of Tenable’s growth and leadership in the ever faster moving world of cyber exposure

What You'll Need:

  • Prior experience working in a security related technical pre-sales role
  • Understanding how to craft a custom demo vs delivering a canned demo
  • Skill and confidence in leading discussions from a deep technical level to the executive level
  • A strong self-starter attitude and determination to win
  • Solid teamwork skills, teamwork is everything at Tenable
  • Solid Interpersonal “smarts”
  • Willingness to travel where and when needed within your territory, typically around 10% on average

And Ideally:

  • Experience with Nessus and/or other network security technologies
  • Solid foundational knowledge of TCP/IP and network security concepts
  • Experience with Enterprise class operating systems at the security admin level
  • Demonstrable experience with modern compute infrastructures such as AWS, Azure, GCP, etc.
  • Docker and DevOps knowledge, API scripting, Python SDK would be a ++
  • Knowledge of compliance standards (e.g., PCI, NIST, FISMA, SOX, NERC)
  • BS in Computer Science or a related field or equivalent experience (i.e. 4+ years of direct SE experience)
  • CISSP, GIAC, CEH, Security+ or other security-related certifications

If you’ve reached this point in the job description and feel you’re still not sure if you should apply…Just do it! We know there are no perfect applicants. You may not have 100% of all those bullets listed above - and that’s okay. If you’re feeling like you’re not going to fit in with our teams - that’s not okay. We're One Tenable which means however you identify and whatever background you bring with you, we encourage you to submit an application if it’s a role you can be passionate about doing every day.

We’re committed to promoting Equal Employment Opportunity (EEO) at Tenable - through all equal employment opportunity laws and regulations at the international, federal, state and local levels.

See more jobs at Tenable

Apply for this job

5d

Senior Security Engineer

QGendaRemote
Bachelor's degreeDesignc++linux

QGenda is hiring a Remote Senior Security Engineer

Title:Senior Security Engineer

Classification(FLSA): Exempt

Position type: Full time      

Reports to: Director, Site Reliability Engineering

Summary / Objective:  

QGenda is a fast growing Atlanta-based healthcare software company, with an amazing corporate culture, where we strive to be the best place to be a customer. Our software is used by thousands of hospital departments around the world to automatically generate the most optimized physician work schedules to accommodate complex business rules and accurately schedule the appropriate medical provider based on their skill level, specialty, availability, and preferences.

As a Senior Security Engineer, you will work with our Product Development Team to ensure high security across our product lines, monitoring and mitigating security risks, and evangelizing security best practices.  You’ll own the system inventory and coordinate vulnerability testing of all systems using both internal tools and external vendors.  You’ll provide the security perspective on various projects and compile a quarterly cyber security report for our Executive Team.

Key Responsibilities: 

  • Ensure High Security Across the Organization
    • Configure and maintain software that monitors systems and networks for security breaches and intrusions.
    • Assist with complex projects and ongoing support of security operations.
    • Report on security vulnerabilities in software and infrastructure.
    • Coordination the remediation patching of vulnerabilities.
    • Automate security improvements using scripting languages or tools
  • Aggressively Monitor and Mitigate Security Risks
    • Monitor systems for irregular behavior and set up preventive measures.
    • Develop, execute, and track the performance of security measures to protect information and network infrastructure and computer systems.
    • Design computer security strategy and engineer comprehensive cybersecurity architecture.
    • Identify, define and document system security requirements and recommend solutions to leadership.
    • Identify security measures to improve incident response.
  • Assist with Compliance Programs and Controls
    • Conduct periodic vulnerability assessments, both internal and external with our 3rd party compliance vendor.
    • Own software and cloud infrastructure inventory.
    • Compile results of Security Assessments to report to the Executive Leadership Team.
  • Evangelize Security Best Practices
    • Educate and train employees on information system security best practices.
    • Participate in the planning and implementation of our company information security strategy.

Knowledge, Skills and Abilities:

  • Proven experience developing, operating and maintaining security systems
  • Extensive knowledge of operating system and database security
  • Proficiency in networking technologies, network security and network monitoring solutions
  • Knowledge of security systems including anti-virus applications, content filtering, firewalls, authentication systems and intrusion detection and notification systems
  • Knowledge of Windows and Linux patch management and related information security functions 
  • In-depth knowledge of security protocols and principles
  • Critical thinking skills and ability to solve complex problems
  • Should possess knowledge of the implementation of risk assessment techniques and the latest security best practices.
  • Knowledge of DevOps Automation tools

Education / Professional Certifications or Licenses Required:

  • Bachelor's degree from an accredited college or university or equivalent industry experience

Work Environment / Physical demands/ Travel Requirements:

  • Computer-based work environment. 
  • Sitting and standing for extended periods
  • Lifting of 5 - 10 pounds

Awards:

  • 2021 - Top 100 Software Companies (The Software Report)
  • 2021 - Best in KLAS
  • 2021 - GA Fast 40
  • 2020 - Deloitte Technology Fast 500
  • 2020 - AJC Best Places to Work
  • 2020 - Top 25 Software Sales Executives
  • 2020 - Atlanta CFO of the Year
  • 2019 - AJC Best Places to Work
  • 2018 - EY Entrepreneur of the Year
  • 2018 - Deloitte Technology Fast 500
  • 2018 - Glassdoor Top 50 CEO

Compensation & Perks:

  • Competitive Salary
  • Bonus Eligible
  • 401k Employer Match

Great Benefits & Culture:

  • Full Health and Dental (QGenda pays 100% of the individual premiums)
  • Employee-centric work culture
  • 3 "Flex Hours" per week
  • Relaxed vacation policy
  • Company outings
  • Costco membership
  • Casual dress
  • Opportunity to be part of a fast growing software company with hundreds of customers and thousands of users around the world.

Applicants must be currently authorized to work in the United States on a full-time basis.

See more jobs at QGenda

Apply for this job

7d

Senior Security Engineer

WorksightedHolland, MI Remote
7 years of experience5 years of experiencemobile

Worksighted is hiring a Remote Senior Security Engineer

Who We Are:

Worksighted is one of the fastest-growing IT service providers in Michigan. We work hard, but we don’t take ourselves too seriously. We are committed to growth, both our customers’ and our own. As a team, we know we’re only as good as the values we stand for and the hard work we put in every day. Joining our team means being a unique piece to the puzzle and a superhero in your own way. From crucial benefits like paid parental leave to in-office parties and zombie-themed wellness challenges, we work hard, have a lot of fun, and know what matters most to our people.

We are looking for a Senior Security Engineer who will be responsible for engaging with clients to improve their security posture, establish short- and long-term security goals and roadmaps, and advise on recommendations to meet compliance and business requirements. This person is a key member of our cross-functional security team and will continue to evolve our security stack and develop services that help protect our clients and establish Worksighted as a security leader in our industry.

Who You Are:

  • You have a Bachelor’s degree in IS, IT, Cyber Security, or related field.
  • You have at least 5-7 years of experience in IT.
  • You have at least 2-5 years of experience in a security-focused role.
  • You have a security certification (i.e. CompTIA Security+ or Microsoft 365 Security Administrator Associate).
  • You are knowledgeable in common security management frameworks such as ISO/IEC 27001, NIST, and CSA.
  • You have a customer-first orientation and the ability to communicate effectively in potentially difficult situations.

What You’re Accountable For:

  • Consulting with Worksighted clients to recommend security solutions and services.
  • Providing input to the architecture and engineering of new security systems as part of our Tech Stack updates, including the valuation of technical designs.
  • Working with Worksighted engineers to audit, monitor, and validate their environments’ security by conducting gap analyses and other comprehensive assessments to improve security infrastructure and mitigate risk.
  • Acting as an escalation resource for security monitoring, Security Essentials services, and incident response, helping to develop new processes and documentation.
  • Identifying, reviewing, and setting priorities for client-focused security policies, services, and initiatives alongside the cross-functional security team.
  • Assisting with the initial triage of issues from the Security service board as needed.
  • Reporting, tracking, and addressing possible threats to client environments.
  • Developing and establishing baseline security environments for clients and monitor as needed.
  • Updating clients on the status of their security tickets and updating documentation.
  • Running vulnerability scans for prospective clients prior to or during onboarding.
  • Assisting with security training and guidance to other engineers.
  • Providing excellent customer service during each interaction with clients and internal team members.

Why You’ll Love Worksighted:

  • Competitive benefits package including medical, dental, and vision insurance, along with company matches to 401(k) and HSA accounts.
  • Paid time off for vacations, sick time, and personal days, plus a day off on your birthday!
  • Well-rounded approach to employee wellness with benefits such as a monthly wellness stipend, free healthy snacks, community service opportunities, and an Employee Assistance Program.
  • Mobile phone stipend.
  • Open and collaborative work environment (dog friendly!)
  • Ongoing employee engagement activities ranging from potlucks to company-wide games of virtual BINGO.
  • An in-depth onboarding program including lunch with leadership, job shadows with every department of the company, and thorough on-the-job training.

Learn more about our values and what it’s like to be a member of our team on our website or by following us on Instagram @Worksighted.

See more jobs at Worksighted

Apply for this job

7d

Engineer, Security Intern

BenefitfocusRemote, United States
DesignazureAWS

Benefitfocus is hiring a Remote Engineer, Security Intern

Description

About Benefitfocus:

Benefitfocus, Inc. (NASDAQ: BNFT) is a leading provider of cloud-based benefits software solutions for consumers, employers, insurance carriers and brokers. Benefitfocus has served numerous consumers on its platform that consists of an integrated portfolio of products and services enabling clients tomore efficiently shop, enroll, manage and exchange benefits information. With a user-friendly interface and consumer-centric design, the Benefitfocus Platform provides one place for consumers to access all their benefits. Benefitfocus solutions support the administration of all types of benefits including core medical,dentaland other voluntary benefits plans as well as wellness programs. 

Job Description:

Why Benefitfocus?

At Benefitfocus, our technology is changing the way the world thinks about healthcare and benefits. We provide insurance carriers, employers,consumers,and government entities cloud-based technology to shop, enroll,manageand exchange benefits information. To be at the forefront of software technology, our strategy is simple. We hire the best and brightest. Our associates tackle the toughest challenges in the industry and create software that is making a positive impact in the lives of millions. Benefitfocus offers challenging, exciting opportunities with a progressive, high growth software company. Every Benefitfocus associate is a valued resource. We constantly reward associates and provide a fun, engaging culture. At Benefitfocus, you are joining a rapidly growing company that is solidly positioned in the $2 trillion dollar healthcare industry. We are looking for an Engineering, Security Intern to join our Cyber Security team for Summer 2022.

 

Responsibilities:

         Interact with other departments to gather data,resolveand document complex technical issues.

         Participate in security testing and assessments.

         Execute on standard operating procedures for security tools and best practices.

         Assist in the audit of security configurations for compliance.

         Work with sensitive, confidential and/or proprietary information while maintaining the highest level of confidentiality, professionalism, and ethics.

         Identify and resolve complex issues and develop innovative solutions to achieve both business and technology goals while maintaining appropriate security.

 

Experience and Skills:

         Strong sense of professionalism,integrityand ethics.

         Understanding of the Software as a Service (SaaS) model.

         Experience in risk management concepts and risk mitigation strategies.

         Ability to communicate effectively, both verbally and in writing for technical and non-technical audiences.

         Knowledge of cloud architecture and operations in AWS, GCP, and Azure public clouds

         Knowledge of security and privacy requirements such as PCI, SOX, SOC1/2, HITRUST, HIPAA, and Privacy regulations.

         SANS GIAC, Security+ or equivalent certifications a plus.

         Familiarity with multi-platform environments and their operational/security considerations.

         3.0 or higher GPA

Benefitfocus is committed to providing a diverse and inclusive workplace in which equality, representation and respect create a culture of belonging. It is Benefitfocus’ policy to encourage diversity in hiring, recognizing that this enriches the work environment for all Benefitfocus Associates and that a broad variety of perspectives enhances decision-making and creativity. Qualified applicants will receive consideration for employment without regard to their age, race, religion, national origin, gender, sexual orientation, gender identity, protected veteran status or disability. Benefitfocus is an Equal Opportunity Employer Minority/Female/Disability/Veteran.

See more jobs at Benefitfocus

Apply for this job

7d

Managed Security Engineer (Remote - USA)

MandiantReston, VA, Remote
Ability to travellinux

Mandiant is hiring a Remote Managed Security Engineer (Remote - USA)

Company Description

Since 2004, Mandiant has been a trusted partner to security-conscious organizations. Effective security is based on the right combination of expertise, intelligence, and adaptive technology, and the Mandiant Advantage SaaS platform scales decades of frontline experience and industry-leading threat intelligence to deliver a range of dynamic cyber defense solutions. Mandiant’s approach helps organizations develop more effective and efficient cyber security programs and instills confidence in their readiness to defend against and respond to cyber threats.

Job Description

Directly supporting the Mandiant Validation delivery team, the Managed Security Engineer is a multi-functional field engineering role, directly supporting Mandiant clients through delivery of Mandiant Managed Security Validation solutions.  This position will have a direct impact on our client’s abilty to proactively defend their environment.

This role will work with our clients to deliver on use-case outcomes, relevant to the clients security capabilities using the Mandiant Security Validation platform, covering many aspects of cyber security.  In this role, you will be a subject matter expert across the Mandiant Security Validation offering and change the way environments are secured and monitored.

What You Will Do:

  • Act as a subject matter expert across the Mandiant Security Validation offering 
  • Delivering technical material and presentations to Executives 
  • Travel to customer sites, helping with enablement and accelerating the customer experience 
  • Build deep relationships to create Mandiant Security Validation advocates 
  • Identify tactical and strategic security solutions to environmental deficiencies 

Qualifications

Qualifications

Minimum Qualifications:

  • 4+ years of success in operational cyber security (Incident Response, Security Operations Center, controls owner)
  • 2+ years experience working in red team, penetration testing or application security roles 
  • Knowledge across multiple security technologies including: SIEM, NGFW, Proxy, IDS/IPS, DLP, EDR, A/V, WAF, Orchestration Solutions 
  • Ability to travel up to 25%

Desired Qualifications: 

  • Strong background in Linux administration 
  • Strong networking background 
  • Experience consulting with enterprise organizations and working on enterprise architecture plans 
  • Experience utilizing threat intelligence to deliver on security solutions  
  • Administration experience with enterprise Microsoft Windows environments 
  • Experience working in incident response or security operations 
  • Experience with cloud deployment environments (AWS/Azure/GCP) 
  • OSCP, OSWP or OSCE a plus  

Additional Information

At Mandiant we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.

Minimum Salary: $85,000. Final salary will be determined commensurately with cost of living, experience level, and/or any other legally permissible considerations.

Incentive Compensation: Eligibility for annual bonus subject to individual and company performance; eligibility for award of Restricted Stock Units subject to eligibility requirements, approval from Mandiant’s Compensation Committee, and vesting terms

Benefits: Employer subsidized benefits include Medical, Dental, Vision, Life, and Disability Insurance. Subject to eligibility requirements, Mandiant also offers the ability to participate in 401(k), Flexible Spending Accounts, Health Savings Accounts, Dependent Care Spending Accounts, and Employee Stock Purchase Program. Mandiant also provides Paid Time Off, Flexible Paid Sick Time, and Paid Holidays.

*Disclosure as required by sb19-085 (8-5-20)

See more jobs at Mandiant

Apply for this job

7d

Senior Security Engineer- Managed Defense (Remote - USA)

MandiantSan Jose, CA, USA, Remote
Ability to travelDesignlinuxpython

Mandiant is hiring a Remote Senior Security Engineer- Managed Defense (Remote - USA)

Company Description

Since 2004, Mandiant has been a trusted partner to security-conscious organizations. Effective security is based on the right combination of expertise, intelligence, and adaptive technology, and the Mandiant Advantage SaaS platform scales decades of frontline experience and industry-leading threat intelligence to deliver a range of dynamic cyber defense solutions. Mandiant’s approach helps organizations develop more effective and efficient cyber security programs and instills confidence in their readiness to defend against and respond to cyber threats.

Job Description

Directly supporting the Mandiant Validation delivery team, the Senior Managed Security Engineer is a multi-functional field engineering role, directly supporting Mandiant clients through delivery of Mandiant Managed Security Validation solutions.  This position will have a direct impact on our client’s abilty to proactively defend their environment.

This role will work with our clients to deliver on use-case outcomes, relevant to the clients security capabilities using the Mandiant Security Validation platform, covering many aspects of cyber security.  In this role, you will be a subject matter expert across the Mandiant Security Validation offering and change the way environments are secured and monitored.

What You Will Do:

  • Act as a subject matter expert across the Mandiant Security Validation offering 
  • Delivering technical material and presentations to Executives 
  • Design content relevant to current threats 
  • Travel to customer sites, supporting enablement and accelerating the customer experience 
  • Build deep relationships to create Mandiant Security Validation advocates 
  • Identify tactical and strategic security solutions to environmental deficiencies 
  • Capture and share best-practice knowledge 

Qualifications

Minimum Qualifications:

  • 6+ years of success in operational cyber security (Incident Response, Security Operations Center, controls owner)
  • 5+ years experience working in red team, penetration testing or application security roles 
  • 1+ years experience with Python, Perl, Bash, Powershell or similar  
  • Deep Knowledge across multiple security technologies including: SIEM, NGFW, Proxy, IDS/IPS, DLP, EDR, A/V, WAF, Orchestration Solutions 
  • Ability to travel up to 25%

Desired Qualifications: 

  • Strong background in Linux administration 
  • Strong networking background 
  • Experience consulting with enterprise organizations and building out enterprise architecture plans 
  • Experience utilizing threat intelligence to deliver on security solutions  
  • Administration experience with Enterprise Windows Environments 
  • Experience working in incident response or security operations 
  • Experience with cloud deployment environments (AWS/Azure/GCP) 
  • OSCP, OSWP or OSCE a plus  

Additional Information

At Mandiant we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.

Minimum Salary: $100,000. Final salary will be determined commensurately with cost of living, experience level, and/or any other legally permissible considerations.

Incentive Compensation: Eligibility for annual bonus subject to individual and company performance; eligibility for award of Restricted Stock Units subject to eligibility requirements, approval from Mandiant’s Compensation Committee, and vesting terms

Benefits: Employer subsidized benefits include Medical, Dental, Vision, Life, and Disability Insurance. Subject to eligibility requirements, Mandiant also offers the ability to participate in 401(k), Flexible Spending Accounts, Health Savings Accounts, Dependent Care Spending Accounts, and Employee Stock Purchase Program. Mandiant also provides Paid Time Off, Flexible Paid Sick Time, and Paid Holidays.

*Disclosure as required by sb19-085 (8-5-20)

See more jobs at Mandiant

Apply for this job

7d

Security Engineer- Managed Defense (Remote - USA)

MandiantPortland, OR, USA, Remote
Ability to travellinux

Mandiant is hiring a Remote Security Engineer- Managed Defense (Remote - USA)

Company Description

Since 2004, Mandiant has been a trusted partner to security-conscious organizations. Effective security is based on the right combination of expertise, intelligence, and adaptive technology, and the Mandiant Advantage SaaS platform scales decades of frontline experience and industry-leading threat intelligence to deliver a range of dynamic cyber defense solutions. Mandiant’s approach helps organizations develop more effective and efficient cyber security programs and instills confidence in their readiness to defend against and respond to cyber threats.

Job Description

Directly supporting the Mandiant Validation delivery team, the Managed Security Engineer is a multi-functional field engineering role, directly supporting Mandiant clients through delivery of Mandiant Managed Security Validation solutions.  This position will have a direct impact on our client’s abilty to proactively defend their environment.

This role will work with our clients to deliver on use-case outcomes, relevant to the clients security capabilities using the Mandiant Security Validation platform, covering many aspects of cyber security.  In this role, you will be a subject matter expert across the Mandiant Security Validation offering and change the way environments are secured and monitored.

What You Will Do:

  • Act as a subject matter expert across the Mandiant Security Validation offering 
  • Delivering technical material and presentations to Executives 
  • Travel to customer sites, helping with enablement and accelerating the customer experience 
  • Build deep relationships to create Mandiant Security Validation advocates 
  • Identify tactical and strategic security solutions to environmental deficiencies 

Qualifications

Minimum Qualifications:

  • 4+ years of success in operational cyber security (Incident Response, Security Operations Center, controls owner)
  • 2+ years experience working in red team, penetration testing or application security roles 
  • Knowledge across multiple security technologies including: SIEM, NGFW, Proxy, IDS/IPS, DLP, EDR, A/V, WAF, Orchestration Solutions 
  • Ability to travel up to 25%

Desired Qualifications: 

  • Strong background in Linux administration 
  • Strong networking background 
  • Experience consulting with enterprise organizations and working on enterprise architecture plans 
  • Experience utilizing threat intelligence to deliver on security solutions  
  • Administration experience with enterprise Microsoft Windows environments 
  • Experience working in incident response or security operations 
  • Experience with cloud deployment environments (AWS/Azure/GCP) 
  • OSCP, OSWP or OSCE a plus  

Additional Information

At Mandiant we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.

Minimum Salary: $85,000. Final salary will be determined commensurately with cost of living, experience level, and/or any other legally permissible considerations.

Incentive Compensation: Eligibility for annual bonus subject to individual and company performance; eligibility for award of Restricted Stock Units subject to eligibility requirements, approval from Mandiant’s Compensation Committee, and vesting terms

Benefits: Employer subsidized benefits include Medical, Dental, Vision, Life, and Disability Insurance. Subject to eligibility requirements, Mandiant also offers the ability to participate in 401(k), Flexible Spending Accounts, Health Savings Accounts, Dependent Care Spending Accounts, and Employee Stock Purchase Program. Mandiant also provides Paid Time Off, Flexible Paid Sick Time, and Paid Holidays.

*Disclosure as required by sb19-085 (8-5-20)

See more jobs at Mandiant

Apply for this job

7d

Senior Managed Security Engineer (Remote - USA)

MandiantPhiladelphia, PA, Remote
Ability to travelDesignlinuxpython

Mandiant is hiring a Remote Senior Managed Security Engineer (Remote - USA)

Company Description

Since 2004, Mandiant has been a trusted partner to security-conscious organizations. Effective security is based on the right combination of expertise, intelligence, and adaptive technology, and the Mandiant Advantage SaaS platform scales decades of frontline experience and industry-leading threat intelligence to deliver a range of dynamic cyber defense solutions. Mandiant’s approach helps organizations develop more effective and efficient cyber security programs and instills confidence in their readiness to defend against and respond to cyber threats.

Job Description

Directly supporting the Mandiant Validation delivery team, the Senior Managed Security Engineer is a multi-functional field engineering role, directly supporting Mandiant clients through delivery of Mandiant Managed Security Validation solutions.  This position will have a direct impact on our client’s abilty to proactively defend their environment.

This role will work with our clients to deliver on use-case outcomes, relevant to the clients security capabilities using the Mandiant Security Validation platform, covering many aspects of cyber security.  In this role, you will be a subject matter expert across the Mandiant Security Validation offering and change the way environments are secured and monitored.

What You Will Do:

  • Act as a subject matter expert across the Mandiant Security Validation offering 
  • Delivering technical material and presentations to Executives 
  • Design content relevant to current threats 
  • Travel to customer sites, supporting enablement and accelerating the customer experience 
  • Build deep relationships to create Mandiant Security Validation advocates 
  • Identify tactical and strategic security solutions to environmental deficiencies 
  • Capture and share best-practice knowledge 

Qualifications

Minimum Qualifications:

  • 6+ years of success in operational cyber security (Incident Response, Security Operations Center, controls owner)
  • 5+ years experience working in red team, penetration testing or application security roles 
  • 1+ years experience with Python, Perl, Bash, Powershell or similar  
  • Deep Knowledge across multiple security technologies including: SIEM, NGFW, Proxy, IDS/IPS, DLP, EDR, A/V, WAF, Orchestration Solutions 
  • Ability to travel up to 25%

Desired Qualifications: 

  • Strong background in Linux administration 
  • Strong networking background 
  • Experience consulting with enterprise organizations and building out enterprise architecture plans 
  • Experience utilizing threat intelligence to deliver on security solutions  
  • Administration experience with Enterprise Windows Environments 
  • Experience working in incident response or security operations 
  • Experience with cloud deployment environments (AWS/Azure/GCP) 
  • OSCP, OSWP or OSCE a plus  

Additional Information

At Mandiant we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.

Minimum Salary: $100,000. Final salary will be determined commensurately with cost of living, experience level, and/or any other legally permissible considerations.

Incentive Compensation: Eligibility for annual bonus subject to individual and company performance; eligibility for award of Restricted Stock Units subject to eligibility requirements, approval from Mandiant’s Compensation Committee, and vesting terms

Benefits: Employer subsidized benefits include Medical, Dental, Vision, Life, and Disability Insurance. Subject to eligibility requirements, Mandiant also offers the ability to participate in 401(k), Flexible Spending Accounts, Health Savings Accounts, Dependent Care Spending Accounts, and Employee Stock Purchase Program. Mandiant also provides Paid Time Off, Flexible Paid Sick Time, and Paid Holidays.

*Disclosure as required by sb19-085 (8-5-20)

See more jobs at Mandiant

Apply for this job

Palo Alto Networks is hiring a Remote Intern - Security Research Engineer (Content Engine Team)

Company Description

Our Mission

At Palo Alto Networks® everything starts and ends with our mission:

Being the cybersecurity partner of choice, protecting our digital way of life.

We have the vision of a world where each day is safer and more secure than the one before. These aren’t easy goals to accomplish – but we’re not here for easy. We’re here for better. We are a company built on the foundation of challenging and disrupting the way things are done, and we’re looking for innovators who are as committed to shaping the future of cybersecurity as we are.

Job Description

Your Career

We are looking for a motivated, intelligent, hardworking and creative intern to join the Content Engine team as a Security Research Engineer. As a Security Research Engineer, you will be part of a team that develops content to power the next-generation firewall for providing cloud-based malware detection and threat research. You will be applying network security knowledge and machine learning techniques to detect advanced threats and attacks. You will be working as a “full-stack” security researcher who analyzes the malware behavior, develops the detection mechanism, and delivers it in the production environment for customers.

Your Impact

  • Learn how next-generation firewalls inspect network packets

  • Gain hands-on experience with malware analysis and threat detection using Google-Cloud infrastructure

  • Gain knowledge about different protocols and ways to identify threats

Our Summer Internship Program from May-August or June-September provides you:

  • 1:1 mentorship

  • Fun and engaging events that inspire your intellectual curiosity

  • Opportunities to expand your knowledge and work on challenging projects

  • Connections to other interns, recent grads, and employees across the company as well as our leaders.

The Team

Our Security Services Team is responsible for building next-generation threat prevention and antivirus solutions and shipping high-quality content to our products to prevent successful cyberattacks. The areas include malware analysis, IoT security, Web security, network security, privacy protection. 

Qualifications

Your Experience

  • Basic understanding of network security and malware analysis

  • Basic understanding of common layer 7 network protocols such as HTTP, SSL, etc

  • Basic knowledge of Big Data Analysis and Machine Learning Techniques

  • Good programming skills 

  • Experience with Google Cloud toolkit is a plus

Requirements – To apply, you must be pursuing a 4-year Undergraduate Degree, a 2-year Master’s Degree or a Doctorate degree and returning to school in the fall. You must have the authorization to work within the United States.

Additional Information

We’re trailblazers that dream big, take risks, and challenge cybersecurity’s status quo. It’s simple: we can’t accomplish our mission without diverse teams innovating, together.

We are committed to providing reasonable accommodations for all qualified individuals with a disability. If you require assistance or accommodation due to a disability or special need, please contact us at [email protected]

Palo Alto Networks is an equal opportunity employer. We celebrate diversity in our workplace, and all qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or other legally protected characteristics.

All your information will be kept confidential according to EEO guidelines.

See more jobs at Palo Alto Networks

Apply for this job

12d

Security Engineer

Unit4Wrocław, Poland, Remote

Unit4 is hiring a Remote Security Engineer

Company Description

We are in Business for People, empowering people in service organizations with innovative Enterprise and Business software solutions. We’ve innovated and taken a new approach to delivering ERP that works for people. Self-driving, adaptive and intuitive software that is changing the way people work. Our solutions empower people and deliver a better people experience so people can spend time on meaningful high value work they live for.

Read more on our website about how we transform work and how people feel about it, so our customers and their people can thrive.

Job Description

Unit4 Network and Security Operations Center is looking for an experienced Security Engineer to bolster the security of solutions IT delivers to our internal and external customers. We are looking for a self-starter, independent-thinker, curious and creative person with ambition to learn and passion for security.

Security Engineer is required to identify and implement security improvements, implement secure practices, observe, be proactive as well as react to monitoring events to handle growing threats on-premise and in the cloud as well as participate in vulnerability management. Security Engineer will work closely with DevOps, Wintel and Network teams to refine and enforce security practices as well as guide and educate colleagues on how to implement new solutions in the most secure way possible.

Qualifications

Security Engineer should demonstrate proficiency and be familiar with:

  • 2-3 years of Information Security experience of using Microsoft technology stack.
  • Be able to communicate fluently in English, both written and verbal, and to communicate technical concepts effectively.
  • Strong analytical and problem-solving skills.
  • Understanding of technologies required to run a secure, enterprise level infrastructure that adhere to security best practices.
  • Understanding of web and cloud technologies.
  • Expertise in antimalware software, intrusion detection, firewalls, and content filtering.

Preferred (not required):

  • Technical experience in a large, complex, global IT environment.
  • Experience with Microsoft suite of Security products.
  • Experience in a black/gray/white box security testing.
  • Knowledge of WAF and proxies would be a plus.

Additional Information

  • 100% Remote work option
  • Employment contract ("Umowa o pracę")
  • Stable employment with an attractive salary
  • Various benefits such as private medical care, Multisport, pre-paid cards and many others
  • Unlimited paid Holidays
  • Opportunity for meeting people from various countries and cultures

A chance to participate in the development of a leading global software firm. You have the opportunity to work within an organization, that gives you the freedom and autonomy to be successful. An attractive salary while working in a challenging international environment with enthusiastic colleagues who like to learn from each other. 

At Unit4 we invest in your personal and professional growth. We don't focus on how many days you work, we trust you on delivering results - thus, we have an unlimited vacation policy. 

See more jobs at Unit4

Apply for this job

NetCraftsmen is hiring a Remote Network Security Engineer - Palo Alto Firewalls

Company Description

Why become a NetCraftsmen?

  • We were Cisco's Mid-Atlantic Partner of the Year for 2020 as well as finalists in the Baltimore Business Journal's "Best Places to Work" for the past 4 years (including a 2nd place finish in 2020)
  • We offer competitive pay and solid benefits including self-directed PTO and a matching 401(k) with the employer component IMMEDIATELY vested
  • We offer a minimum of 2 weeks and a strong corresponding budget per engineer per year (pro-rated) for professional development/certification AND the time necessary to hit your training/cert goals
  • We are NOT a body shop. We hire full-time direct hire specialists with a driving thirst to learn and improve.
  • See our reviews on Indeed and GlassDoor for validation.

Job Description

The ideal candidate would be a mid to senior-level engineer who has a driving thirst to not only be great at what they do but to also understand the "why" behind the "how".  This person is typically the one with the killer home lab and the one that the SME's in the organization view as "one to watch"

If you fit this personality profile, we are looking for a Palo Alto centric network security engineer to join our expanding DC/VA region.  In this role, you will support one of our vendor partners in a Cisco/Checkpoint to Palo Alto conversion, in addition to helping to build the Palo Alto portion of our security practice.  We will have openings for mid-level and senior-level Palo Alto engineers

 

Qualifications

  • 4 or more years’ experience in network security or commensurate ability to design and deploy security architectures with several of those years gaining experience in deploying and maintaining Palo Alto firewalls 
  • Solid technical underpinning designing and deploying route/switch network infrastructures
  • Experienced with VPNs, Proxies, IPSEC and SSL
  • Ability to work both independently and with a team of highly skilled professionals 
  • Must be able to work on Federal Government sites requiring US Citizenship AND be able to pass a drug screen and background investigation 

It would be great if you also had:

  • Additional security certifications such as ACE, PCNSA, PCNSE, CCNA, CCNP, CCIE, CEH or CISSP

Additional Information

All qualified applicants to NetCraftsmen career opportunities will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, or national origin.

See more jobs at NetCraftsmen

Apply for this job

14d

Senior Platform Security Engineer, Cash App

SquareNew York, NY, USA, Remote
terraformDesigndockerkubernetesAWS

Square is hiring a Remote Senior Platform Security Engineer, Cash App

Company Description

It all started with an idea at Square in 2013. Initially built to take the pain out of peer-to-peer payments, Cash App has gone from a simple product with a single purpose to a dynamic app, bringing a better way to send, spend, invest, and save to our millions of monthly active users. We want to make the world’s relationship with money more relatable, instantly available, and universally accessible. This is our mission, and it’s why working at Cash App means so much more than a job.

Today, Cash App has thousands of employees working globally across office and remote locations, with a culture geared toward creativity, collaboration and impact. We’ve been a distributed team since day one, and we’ve got offices and remote teammates across the globe. Our offices are great, but many of our roles can be done remotely from the countries where Cash App operates. No matter the location, we tailor our experience to ensure our employees are creative, productive, and happy.

Check out our locations, benefits, and more at cash.app/careers to learn more!

Job Description

Cash is built as a service mesh, communicating via synchronous APIs as well as asynchronous events, built on AWS and Kubernetes. The Platform team is responsible for the mission-critical fabric that these services run on, and provides service discovery, routing, self-healing, and observability features that product teams use to operate their systems on Cash’s platform.

The Cash Security team is a hands-on engineering-driven security team that embeds security engineers within key platform and product teams across Cash. As a security team, we collaborate on building and sharing security infrastructure, design patterns, and guidelines.

As a Cash Security Engineer embedded in Cash Platform’s engineering team, you’ll work within and across Cash Platform’s engineering team to:

  • Co-design, co-build, and co-own the security hardening, mechanisms, and features of our production platform across deploy, storage, traffic, and developer velocity.
  • Design, apply, and develop cryptographic layers to provide “zero-trust” security properties for multi-tenant separation within shared infrastructure systems
  • Evaluate the security properties and risks of 3rd-party systems and services that we would integrate into our cloud environment to advise the Cash Platform team of the trade-offs
  • Help the engineers around you level-up on their own security reasoning and knowledge
  • Work with bleeding edge cloud technology

Qualifications

You have:

  • A strong motivation to contribute to a meaningful product that will fundamentally change the way people interact with financial institutions.
  • Strong desire to perform and grow as a security engineer and educate other engineers
  • Demonstrated technical initiative and leadership


Technologies we use and teach:

  • AWS KMS and Google’s Tink Cryptographic APIs
  • Go, Terraform, AWS, Docker, Kubernetes
  • gRPC, Envoy
  • SignalFx, DataDog, Jaeger, Prometheus

Additional Information

We’re working to build a more inclusive economy where our customers have equal access to opportunity, and we strive to live by these same values in building our workplace. Block is a proud equal opportunity employer. We work hard to evaluate all employees and job applicants consistently, without regard to race, color, religion, gender, national origin, age, disability, pregnancy, gender expression or identity, sexual orientation, citizenship, or any other legally protected class. 

We believe in being fair, and are committed to an inclusive interview experience, including providing reasonable accommodations to disabled applicants throughout the recruitment process. We encourage applicants to share any needed accommodations with their recruiter, who will treat these requests as confidentially as possible. Want to learn more about what we’re doing to build a workplace that is fair and square? Check out our I+D page

Additionally, we consider qualified applicants with criminal histories for employment on our team, and always assess candidates on an individualized basis.

Block, Inc. (NYSE: SQ) is a global technology company with a focus on financial services. Made up of Square, Cash App, Spiral, TIDAL, and TBD54566975, we build tools to help more people access the economy. Square helps sellers run and grow their businesses with its integrated ecosystem of commerce solutions, business software, and banking services. With Cash App, anyone can easily send, spend, or invest their money in stocks or Bitcoin. Spiral (formerly Square Crypto) builds and funds free, open-source Bitcoin projects. Artists use TIDAL to help them succeed as entrepreneurs and connect more deeply with fans. TBD54566975 is building an open developer platform to make it easier to access Bitcoin and other blockchain technologies without having to go through an institution.

See more jobs at Square

Apply for this job

18d

Security Engineer

DesignmobileiosrubycsspythonAWS

The Lifetime Value Co. is hiring a Remote Security Engineer

About the Job

Today's businesses, organizations, and government entities handle sensitive information on a daily basis. This requires having systems in place to protect it. In this remote-friendly role, as a security engineer, you will help ensure that sensitive data is kept confidential. 

This is a hands-on development role; you will be expected to write your own custom security tools, enhance existing tools, and perform security audits on our code.

In this role, you will be finding, reporting, and fixing security issues. You will also be writing and implementing security tools, and modifying/deploying open source and commercial tools. As a member of our growing Security Team, you’ll be working with both technical and non-technical teams to help advance the company’s security program, develop and implement new tooling to assist in reducing risk to the company, and be actively involved in progressing our security posture.

Previous experience with a variety of coding languages, operating systems, and networks is advantageous. You will be expected to be able to work both independently and in conjunction with dev teams.

 

What You Get to Do

  • Perform technical hands-on and tool-assisted security reviews of systems; recommend and implement fixes
  • Implement commercial, open source, and custom-built security tools
  • Implement fixes directly in the codebase by writing and pushing code
  • Build and automate tooling associated with Information Security audits
  • Upgrade or replace third-party libraries with more secure alternatives
  • Identify the need for new security controls, and lead their design and implementation
  • Participate in code reviews on a regular basis to ensure new code is being implemented with best practices
  • Contribute to the development and implementation of technical security risk assessment and secure design practice
  • Implement fixes directly in the codebase by writing and pushing code
  • Design, build and maintain Information Security tools and systems
  • Assist fellow employees with cybersecurity questions and needs

 

What You Bring to the Table

  • Deep understanding of Information Security concepts like the OWASP Top 10
  • Coding skills in one or more of these languages: Ruby, Python, HTML, CSS 
  • At least 4 years experience in the cybersecurity industry
  • Ability to prioritize multiple projects
  • Development and code deployment experience, use of tools such as Github
  • Comfortable working in a fast-paced environment
  • Excellent communication skills
  • Critical thinking skills and the ability to solve problems as they arise
  • An understanding of best practices and how to implement them at a business-wide level
  • Experience using AWS
  • Experience with mobile application security is a plus, both iOS and Android.

 

Your Reward for Greatness

  • Highly competitive compensation packages
  • Great health insurance including medical, dental, and vision
  • Sanvello and Talkspace through United HealthCare’s Behavioral Health Benefits
  • Life insurance and personal accident insurance fully paid by LTV
  • Competitive Paid Time Off and Sick Time provided
  • 401 (k) plan with fully-vested company matching up to 6% - Eligible Day 1!
  • Flexible Savings Account/Health Savings Account
  • Free ClassPass On-Demand workouts to Monthly ClassPass Subsidy
  • Weekly meal delivery through Seamless/DoorDash
  • Tax preparation through Henry.tax
  • Student loan repayment & financial wellness resources via Peanut Butter
  • Password Management with 1Password
  • Company organized volunteer days
  • Professional development training and opportunities for professional growth - as we grow, you grow!
  • If you want to WFH, you are in the right place. We have a remote-friendly culture.
  • Custom technology setup to meet your WFH needs
  • Home Office Reimbursement Perk for your perfect work from home setup
  • An innovative, energetic culture with great people to work with!
  • Anniversary Appreciation Gifts
  • Day of Personal Significance
  • Quarterly Home Utility Reimbursement

 

Why LTV Co.?

If you have ambitions to be a part of a high-growth, results-driven, industry-leading organization, LTV is the place to be. LTV builds exciting data products and then we market them with passion. We’re a fast-growing company in New York City that balances the culture of a startup with the stability of being an established, profitable company. We want to work with people that strive to be in the top .01% of their field. We understand that getting to the top takes hard work, constant improvement, and by making data-driven decisions. It’s a thrilling time to join the team, as we’re expanding our product offerings in exciting new ways, driving innovation through data, marketing, and web & app development.

We believe in diversity and hiring people from all backgrounds and walks of life. You must be energetic, inventive, a team player, and looking to help build and grow the company each and every day. You must have an inner desire to win and the idea of losing is a non-starter. If you are looking for a position that allows you to work with a group of smart and dedicated people who will support you but still provide the autonomy you need to execute your strategy, then you should probably apply as soon as you’re done reading this!

 

About Us

LTV was founded in New York by Josh Levy and Ross Cohen in 2007. At the time their mission was to provide easy and affordable access to public records. Something that in 2007, was only really accessible to corporations. Since then their mission has expanded to developing products and services that grant access to information and data across a number of verticals. In service of this mission, LTV has 7 consumer brands including BeenVerified, NumberGuru, PeopleLooker, NeighborWho, Ownerly, PeopleSmart, and Bumper.

Our mission is to develop a diverse portfolio of technologies, products, and services, that gives all people equal access to unbiased data and information. We believe that through this access people can empower and protect themselves in today’s ever-changing world, filled with fake news, deception, and a lack of transparency.

 

See more jobs at The Lifetime Value Co.

Apply for this job

+30d

Principal Cloud Security Response Engineer, Unit 42 (Remote)

Palo Alto NetworksSanta Clara, CA, Remote
terraformDesignansibleazurelinuxpythonAWSjavascript

Palo Alto Networks is hiring a Remote Principal Cloud Security Response Engineer, Unit 42 (Remote)

Company Description

Our Mission

At Palo Alto Networks® everything starts and ends with our mission:

Being the cybersecurity partner of choice, protecting our digital way of life.

We have the vision of a world where each day is safer and more secure than the one before. These aren’t easy goals to accomplish – but we’re not here for easy. We’re here for better. We are a company built on the foundation of challenging and disrupting the way things are done, and we’re looking for innovators who are as committed to shaping the future of cybersecurity as we are.

We’re changing the nature of work. Palo Alto Networks is evolving to meet the needs of our employees now and in the future through FLEXWORK, our approach to how we work. From benefits to learning, location to leadership, we’ve rethought and recreated every aspect of the employee experience at Palo Alto Networks.  And because it FLEXes around each individual employee based on their individual choices, employees are empowered to push boundaries and help us all evolve, together. 

Job Description

Your Career 

Unit 42 Engineering is seeking an innovative tool-builder to join a newly-formed Cloud Engineering team responsible for the tooling and automation for our Cloud Incident Response Services. Our team loves to automate response processes, and develop tools to help investigate breaches. 

You will leverage your expertise to deliver innovative, high quality, and highly scalable tools for Cloud Incident Response. You’ll apply those same skills toward identifying technical solutions to roadmap projects, improving consultant efficiency, and contributing back to our products. Bring your software expertise to help design and implement the roadmap for this new team. 

Your Impact 

  • Lead the design, development, and implementation of world class solutions for Incident Response in Public Cloud environments
  • Lead the design, development, and implementation of Infrastructure as Code (IaC) that deployed to clients Public Cloud accounts
  • Stay at the forefront of cloud technologies and cloud forensic tooling
  • Provide Technical Support to Incident Response Consultants and clients, specifically pertaining to cloud technologies and the solutions we develop
  • Lead code and architecture reviews

Qualifications

Your Experience 

  • Experience developing solutions that gather logs and configuration information from cloud infrastructure, scalable cloud solutions and/or related systems
  • Developing solutions that gather logs and configuration information from cloud infrastructure, scalable cloud solutions and/or related systems
  • Experience designing, developing and implementing Infrastructure as Code using Terraform, CloudFormation, Ansible and/or Puppet
  • Demonstrated experience in one or more public cloud provider’s technology suites (e.g. AWS, Azure, and/or GCP)
  • Experience developing solutions with Python, Golang, and/or JavaScript
  • Experience collecting evidence from cloud providers, cloud infrastructure, and analyzing that data
  • Strong understanding of security operations: perimeter defense, forensics, incident response, kill chain analysis, risk assessment and security metrics.
  • Can-do attitude with regard to creative problem-solving, quality, and ability to execute
  • Experience with Linux systems development and forensics is a plus

Additional Information

The Team 

Unit 42’s Security Consulting Engineering team specializes in providing tools for data breach response, digital forensics, and risk management consulting services to a growing list of clients ranging from small enterprises to Fortune 50 corporations, as well as federal government agencies. Our experts combine deep security knowledge and proprietary technology to rapidly provide effective incident response, attack-readiness, and remediation plans for organizations around the world. 

Our Commitment

We’re trailblazers that dream big, take risks, and challenge cybersecurity’s status quo. It’s simple: we can’t accomplish our mission without diverse teams innovating, together.

We are committed to providing reasonable accommodations for all qualified individuals with a disability. If you require assistance or accommodation due to a disability or special need, please contact us at [email protected]

Palo Alto Networks is an equal opportunity employer. We celebrate diversity in our workplace, and all qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or other legally protected characteristics.

All your information will be kept confidential according to EEO guidelines.

 

 

#LI-BA2

See more jobs at Palo Alto Networks

Apply for this job

+30d

Cloud Security Response Engineer, Unit 42 (Remote)

Palo Alto NetworksMcLean, VA, USA, Remote
terraformDesignansibleazurelinuxpythonAWSjavascript

Palo Alto Networks is hiring a Remote Cloud Security Response Engineer, Unit 42 (Remote)

Company Description

Our Mission

At Palo Alto Networks® everything starts and ends with our mission:
Being the cybersecurity partner of choice, protecting our digital way of life.

We have the vision of a world where each day is safer and more secure than the one before. These aren’t easy goals to accomplish – but we’re not here for easy. We’re here for better. We are a company built on the foundation of challenging and disrupting the way things are done, and we’re looking for innovators who are as committed to shaping the future of cybersecurity as we are.

We’re changing the nature of work. Palo Alto Networks is evolving to meet the needs of our employees now and in the future through FLEXWORK, our approach to how we work. From benefits to learning, location to leadership, we’ve rethought and recreated every aspect of the employee experience at Palo Alto Networks.  And because it FLEXes around each individual employee based on their individual choices, employees are empowered to push boundaries and help us all evolve, together. 

Job Description

Your Career 

Unit 42 Engineering is seeking an innovative tool-builder to join a newly-formed Cloud Engineering team responsible for the tooling and automation for our Cloud Incident Response Services. Our team loves to automate response processes, and develop tools to help investigate breaches. 

You will leverage your expertise to deliver innovative, high quality, and highly scalable tools for Cloud Incident Response. You’ll apply those same skills toward identifying technical solutions to roadmap projects, improving consultant efficiency, and contributing back to our products. Bring your software expertise to help design and implement the roadmap for this new team. 

Your Impact 

  • Design, develop, and implement world class solutions for Incident Response in Public Cloud environments
  • Design, develop, and implement Infrastructure as Code (IaC) that is deployed to clients Public Cloud accounts
  • Stay at the forefront of cloud technologies and cloud forensic tooling
  • Provide Technical Support to Incident Response Consultants and clients, specifically pertaining to cloud technologies and the solutions we develop
  • Participate in code and architecture reviews

Qualifications

Your Experience 

  • Experience developing solutions that gather logs and configuration information from cloud infrastructure, scalable cloud solutions and/or related systems
  • Developing solutions that gather logs and configuration information from cloud infrastructure, scalable cloud solutions and/or related systems
  • Experience designing, developing and implementing Infrastructure as Code using Terraform, CloudFormation, Ansible and/or Puppet
  • Demonstrated experience in one or more public cloud provider’s technology suites (e.g. AWS, Azure, and/or GCP)
  • Experience developing solutions with Python, Golang, and/or JavaScript
  • Experience collecting evidence from cloud providers, cloud infrastructure, and analyzing that data
  • Strong understanding of security operations: perimeter defense, forensics, incident response, kill chain analysis, risk assessment and security metrics.
  • Can-do attitude with regard to creative problem-solving, quality, and ability to execute
  • Experience with Linux systems development and forensics is a plus

Additional Information

The Team 
Unit 42’s Security Consulting Engineering team specializes in providing tools for data breach response, digital forensics, and risk management consulting services to a growing list of clients ranging from small enterprises to Fortune 50 corporations, as well as federal government agencies. Our experts combine deep security knowledge and proprietary technology to rapidly provide effective incident response, attack-readiness, and remediation plans for organizations around the world. 


Our Commitment
We’re trailblazers that dream big, take risks, and challenge cybersecurity’s status quo. It’s simple: we can’t accomplish our mission without diverse teams innovating, together.

We are committed to providing reasonable accommodations for all qualified individuals with a disability. If you require assistance or accommodation due to a disability or special need, please contact us at [email protected]

Palo Alto Networks is an equal opportunity employer. We celebrate diversity in our workplace, and all qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or other legally protected characteristics.

All your information will be kept confidential according to EEO guidelines.
 

#LI-BA2

See more jobs at Palo Alto Networks

Apply for this job

+30d

Staff Systems Security Engineer

ServiceNow4810 Eastgate Mal, San Diego, California, United States, Remote
DesignansibledockerkuberneteslinuxAWS

ServiceNow is hiring a Remote Staff Systems Security Engineer

Company Description

ServiceNow is making the world of work, work better for people. Our cloud‑based platform and solutions deliver digital workflows that create great experiences and unlock productivity for employees and the enterprise. We're growing fast, innovating faster, and making an impact on our customers' and employees' lives in significant and important ways. With over 6,900 customers, we serve approximately 80% of the Fortune 500, and we're on the 2020 list of FORTUNE World's Most Admired Companies.®

We’re looking for people who are ready to jump right in and help us build on our incredible momentum, our diverse, engaged workforce, and our purpose to make the world of work, work better.

Learn more on Life at Now blog and hear from our employees about their experiences working at ServiceNow.

Job Description

What you get to do in this role:

As a Systems Security Engineer, you will be part of a team that is ensuring the security of our engineering infrastructure (heavily cloud-based in AWS using EKS / Kubernetes / Docker with thousands of instances under management) for ServiceNow. We need your expertise to design, monitor, measure, optimize, and ensure that we plan for the level of infrastructure security required to enable enterprise scale software development, quality engineering, and production releases.  This includes the following responsibilities:

  • Serve as liaison to corporate information / system security teams – coordinate responses and remediation efforts as appropriate
  • Design and implement security health dashboards – both internal to the team, and external users – tracking metrics necessary to meet organizational SLAs.
  • Manage and report security related incidents across the infrastructure to provide management with overall status.
  • Provision, monitor, and manage cloud infrastructure in AWS using cutting-edge Infrastructure-as-Code methods and to scale the Build and Release Platform.
  • Manage and maintain the CMDB / DCIM tools to ensure accurate infrastructure data.
  • Guide and mentor the infrastructure engineering team in the management of O/S and application patching, critical data protection, and operating performance.
  • Using data gathered through system and application monitoring, identify potential security issues and develop plans to proactively modify configurations before problems occur.
  • Troubleshoot, resolve problems, perform root cause analysis, and document solutions to improve time to discovery / time to resolution.

Qualifications

To be successful in this role you have:

  • 5+ years hands-on experience with cloud infrastructure security, system engineering, and incident response
  • Ability to quickly learn about new technologies, evaluate applicability to our environment and apply them appropriately
  • Passion for automation, continuous improvement, and DevSecOps culture
  • Clear communication skills, both in person and in writing
  • A strong commitment to customer service

Preferred:

  • Experience supporting security and operations for enterprise-scale hybrid cloud and on-prem environments
  • Fluency in one or more of the following technologies:
  • Amazon Web Services
  • VMware
  • EKS / Kubernetes / Docker
  • LogicMonitor / Splunk
  • Chef / Ansible
  • Linux (CentOS/Fedora/RedHat)
  • Windows (Desktop and Server)
  • MacOS

 

JV20

Additional Information

ServiceNow is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, sex, sexual orientation, national origin or nationality, ancestry, age, disability, gender identity or expression, marital status, veteran status or any other category protected by law.

All new employees hired in the United States are required to be fully vaccinated against COVID-19, subject to such exceptions as required by law. If hired, you will be required to submit proof of full vaccination or have an approved accommodation, by your start date. Visit our Candidate FAQ pageto learn more.

If you require a reasonable accommodation to complete any part of the application process, or are limited in the ability or unable to access or use this online application process and need an alternative method for applying, you may contact us at [email protected] for assistance.

For positions requiring access to technical data subject to export control regulations, including Export Administration Regulations (EAR), ServiceNow may have to obtain export licensing approval from the U.S. Government for certain individuals. All employment is contingent upon ServiceNow obtaining any export license or other approval that may be required by the U.S. Government.

Please Note: Fraudulent job postings/job scams are increasingly common. Click here to learn what to watch out for and how to protect yourself. All genuine ServiceNow job postings can be found through the ServiceNow Careers site.

Work personas

Work personas are categories that are assigned to employees depending on the nature of their work. Employees will fall into one of three categories: Remote, Flexible or Required in Office. 

Required in Office

A required in office work persona is defined as an employee who is contracted to work from or aligned to a ServiceNow-affiliated office. This persona is required to work from their assigned workplace location 100% of the work week based on the business needs of their role.

Flexible 

A flexible work persona is defined as an employee who is contracted to work from or aligned to a ServiceNow-affiliated office and will work from their assigned workplace location roughly 3 days/week or less (generally around 40-60% of the work week). Flexible employees may choose to work the remaining working time from their workplace location or home. Flexible employees are required to work within their state, province, region, or country of employment.

Remote

A remote work persona is defined as an employee who performs their responsibilities exclusively outside of a ServiceNow workplace and is not contracted or aligned to a ServiceNow-affiliated office, including those whose place of work (pursuant to their terms and conditions of employment) is their home. Remote employees are required to work within their state, province, region, or country of employment.

See more jobs at ServiceNow

Apply for this job