person looking for a Security Operations Remote Jobs

Get Remote Security Operations Jobs in your mailbox.

91 exciting remote jobs on file from 2500+ top remote companies.

Hot new jobs of this week
91 active jobs from past weeks to consult
Segmented for USA, Europe or Worldwide.
Personally selected for you by our experienced remote hiring managers.

A selection of jobs from the previous newsleterrs.

Lead Security Engineer (REMOTE)

Serigor Inc.Remote

jira ● salesforce ● Design ● azure

Serigor Inc. is hiring a Remote Lead Security Engineer (REMOTE)

Lead Security Engineer (REMOTE) - Serigor Inc. - Career PageSee more jobs at Serigor Inc.

Apply for this job

Security Engineer

George Jon, Inc.Remote

Mid Level ● Full Time ● 3 years of experience ● remote-first ● Design ● c++ ● linux

George Jon, Inc. is hiring a Remote Security Engineer

Security Engineer - George Jon, Inc. - Career Page~~See more jobs at George Jon, Inc.~~

Apply for this job

Chief Information Security Officer

Life36Remote, USA

Master’s Degree ● 10 years of experience ● remote-first ● Design ● mobile ● c++ ● AWS

Life36 is hiring a Remote Chief Information Security Officer

About Life360

Life360 is on a mission to keep people close to the ones they love. Our category-leading mobile app and Tile tracking devices empower members to protect the people, pets, and things they care about most with a range of services, including location sharing, safe driver reports, and crash detection with emergency dispatch. Life360 serves approximately 66 million monthly active users (MAU) across more than 150 countries.

Life360 delivers peace of mind and makes everyday family life better with seamless coordination for all the moments that matter, big and small. By continuing to innovate and deliver for our customers, we have become a household name and the must-have mobile-based membership for families (and those friends that basically are family).

Life360 has more than 500 (and growing!) remote-first employees. For more information, please visit Life360.com.

Life360 is a Remote-First company, which means a remote work environment will be the primary experience for all employees. All positions, unless otherwise specified, can be performed remotely (within the US) regardless of any specified location above.

About the Team

This newly created CISO position will oversee our security team and be responsible for Product and IT security for Life360's consumer applications and our Tile and Jiobit hardware products. Your goal will be to ensure Life360 becomes the most trusted application in the market, helping grow our members as we expand our offerings to help people protect the people, pets, and things they care about. Sitting between IT and our product and engineering organizations, this dedicated security team will work closely with those two groups while instilling the values that everyone in the company owns security. This spans our consumer applications Life360, Tile, and Jiobit; our hardware devices Tile and Jiobit; and our data and business partnerships.

What You’ll Do

We are seeking an experienced and highly motivated Chief Information Security Officer (CISO) to lead our information security program. As Vice-President and manager of our Security team, you will report to the CTO and will be responsible for establishing and maintaining the enterprise vision, strategy, and programs to ensure information assets and technologies are protected. You will work closely with senior leadership to develop and implement proactive security initiatives, policies, and protocols to create a culture of security at Life360. You excel at making risk assessments and tradeoffs and working with constrained resources to achieve big things. In addition to being an organizational leader, you are also a strong individual contributor, able to jump into the day-to-day of your team and the programs you are driving as needed.

Develop and Implement a Security Strategy:

Create and execute a comprehensive information security strategy to protect the organization’s assets.
Align security initiatives with business objectives to support growth and innovation.
Develop a strategy and roadmap that mitigates and manages exposure and risk.
Report continuous progress, challenges, and risks to executive leadership.
Provide thought leadership on security-related regulatory and statutory matters.
Take on a leadership role to triage and investigate security incidents, help determine the incident's business impact, and lead the safe and rapid resolution of the problem.

Risk Management

Identify, assess, and mitigate information security risks.
Conduct regular risk assessments and vulnerability testing.

Policy and Compliance

Work closely with our compliance team to develop and implement effective and reasonable policies and practices to secure protected and sensitive data and ensure information security and compliance with relevant legislation and legal interpretation.

Organizational Development

Manage a dedicated security team, developing individuals and promoting organizational health.
Help establish career pathways for security team members and advocate for the security function.
Be a hands-on example to the team, establishing ways of working through doing.

Security Operations

Oversee daily cyber security activities for the entire company to manage risk appropriately, ensure an effective response to incidents, and secure data access and utilization.
Proactively analyze and directly respond to internal and external threats to system security.
Develop and implement with our IT organization security tools and technologies (e.g., firewalls, intrusion detection systems, encryption).
Establish and manage proactive incident response plans.
Lead the investigation and remediation of security breaches and incidents.

Training and Awareness

Develop and conduct security awareness training for employees.
Foster a culture of security awareness across the company.
Provide direction for Enterprise Risk Management, Business Continuity and Disaster Recovery Efforts, Policies and Procedures, and Record Retention.
Design the architecture for security programs, including Audit and Compliance, Risk Governance, Security Policies and Procedures, Security Awareness Training.

Collaboration and Communication

Collaborate with IT, legal, compliance, product, and engineering teams to ensure cohesive security efforts.
Communicate security risks and strategies to executive leadership and the board of directors.

Vendor Management

Evaluate and manage relationships with security vendors and service providers.
Assist in selecting third-party security vendors to assist in our data security capabilities.
Ensure third-party security measures meet organizational standards.

What We’re Looking For

Minimum of 15 years of experience in technology, with 10 years of experience in a leadership role
Minimum of 10 years in information security.
A strong technical background and experience in bringing technical solutions to address security-related issues while communicating and managing security risks across the leadership team.
Experience with AWS or other cloud platforms, mobile devices, and IoT devices (preferred).
Consumer product experience preferred.
Proven experience in developing and implementing security strategies and programs.
Strong understanding of current and emerging security technologies and practices.
Excellent analytical, problem-solving, and decision-making skills.
Strong communication and interpersonal skills.
Ability to work under pressure and manage multiple priorities.
Bachelor’s degree in Information Security, Computer Science, Information Technology, or a related field. Master’s degree preferred.

Our Benefits

Competitive pay and benefits
Medical, dental, vision, life and disability insurance plans (100% paid for employees)
401(k) plan with company matching program
Mental Wellness Program & Employee Assistance Program (EAP) for mental well-being
Flexible PTO, 13 company-wide days off throughout the year
Winter and Summer week-long synchronized company shutdowns
Learning & Development programs
Equipment, tools, and reimbursement support for a productive remote environment
Free Life360 Platinum Membership for your preferred circle
Free Tile Products

Life360 Values

Our company’s mission-driven culture is guided by our shared values to create a trusted work environment where you can bring your authentic self to work and make a positive difference

Be a Good Person - We have a team of high-integrity people you can trust.
Be Direct With Respect - We communicate directly, even when it’s hard.
Members Before Metrics - We focus on building an exceptional experience for families.
High Intensity, High Impact - We do whatever it takes to get the job done.

Our Commitment to Diversity

We believe that different ideas, perspectives, and backgrounds create a stronger and more creative work environment that delivers better results. Together, we continue to build an inclusive culture that encourages, supports, and celebrates the diverse voices of our employees. It fuels our innovation and connects us closer to our customers and the communities we serve. We strive to create a workplace that reflects the communities we serve and where everyone feels empowered to bring their authentic best selves to work.

We are an equal opportunity employer and value diversity at Life360. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, disability status or any legally protected status.

See more jobs at Life36

Apply for this job

Senior Security Engineer - Enterprise Security

SamsaraRemote - US

python

Samsara is hiring a Remote Senior Security Engineer - Enterprise Security

Job Application for Senior Security Engineer - Enterprise Security at SamsaraApply for this job

Staff Software Engineer - Application Security

3P&T Security RecruitingEverett, WA, Remote

Design ● python ● javascript

3P&T Security Recruiting is hiring a Remote Staff Software Engineer - Application Security

Job Description

They are looking for an experienced Staff Security Engineer to join their security team. This role combines research, analysis, prevention, detection and forensics. You will be engaged in everything from building safer and more security systems to detecting advanced (APT) attackers. This role will require constant adaptation to new challenges that may arise in their ever-growing surface area.

In this role, you will:

Work with teams to discover and implement new detection capabilities and logging sources.
Be a thought leader in building our client's security road-map.
Be a security subject matter expert and respond to internal security engineering questions/requests.
Operate external bug bounty programs to source vulnerability information.
Architect, design and implement defensive systems that enhance their security.
Carefully balance security risk and product advancement.
Respond to security and privacy incidents, write incident reports, and participate in post-postmortems.
Perform penetration testing on their internal and external applications.
Integrate customer security requirements into product and system design.

Qualifications

Minimum required qualifications:

Bachelor's degree in Computer Science/Engineering or equivalent practical experience.
8+ years of experience on security-focused teams.
Stellar programming/coding fundamentals.
Expertise working with web services deployed on Cloud providers.

The ideal candidate will also have:

Programming mastery in Go, Python, C/C++, JavaScript, TypeScript.
Demonstrated ability to ship production-quality software in a dynamic environment.
Strong communication skills and drive to collaborate across teams.
Deep knowledge with data privacy regulations and compliance e.g. SOC 2, GDPR, CCPA
Experience working with firmware and hardware security.

See more jobs at 3P&T Security Recruiting

Apply for this job

Personnel Security Specialist II

ISN CorporationHuntsville, AL, Remote

ISN Corporation is hiring a Remote Personnel Security Specialist II

Job Description

ISN is actively recruiting skilled professionals to support the Security Division's comprehensive background investigation (BI) contractor services in Huntsville (HSV) and the National Capital Region (NCR). Our mission is to perform a full range of Background Investigations (BI) services in compliance with multiple Executive Orders (EOs), Security Executive Agent Directives (SEADs), Investigative Standards (IS), and FBI Policies. In these roles, you will help satisfy OGA and TW 2.0 requirements, identifying and adjudicating personnel threats that could compromise the FBI's mission. Most clearances are Top Secret (TS), requiring initial full-field Single Scope Background Investigations (SSBIs) and reinvestigations. Your work will ensure the FBI maintains its high standards and compliance with policies set by executive orders, ODNI, and OPM for personnel vetting. Must have a current TS security clearance and must be capable of obtaining SCI access that includes a requirement to pass a security CI polygraph exam.

Functional Responsibilities

Provide direct support and service to the administration of the FBI Security Program by participating in the direction, from inception to completion, of complex security assessment investigations conducted by FBI Field Offices (FOs).
Conduct, review, and analyze a variety of interviews internal and external to the organization.
Provide support, analysis, and research into complex problems and processes relating to Personal Security.
Complete written reports and/or oral presentations utilizing critical thinking and analysis skills.
Contribute to the development of new principles and concepts.
Work on complex problems and provide solutions.
Advise the supervisor of potentially controversial matters or those matters with far-reaching implications.
Initiate or perform extensive FBI indices checks, arrest record checks, and similar checks to obtain pertinent and identifying information for assigned cases.
Request, receive, review, and analyze various FBI Government files and related material for the determination of an individual's potential security risk.
Summarize data and compose necessary correspondence to appropriate FOs for initiation of investigations.
Coordinate with FOs for the submission of investigation information.
Examine and critically analyze investigative reports and correspondence from the FOs for conformance to administrative requirements as to format and content.
Recommend the need for polygraph examinations and/or interviews based on analysis of all available data.
Receive, review, and analyze the results of further investigations, along with the results of interviews and polygraph examinations.
Summarize all data provided and developed in a formal written analysis of the security concerns and their resolutions.
Establish and maintain liaison with other FBI HQ Divisions, DOJ, and other agency officials.
Coordinate or work in concert with other FBI components as required to surface, develop, and resolve various issues encountered.
Recommend new methods and procedures for passing and affirming clearances including SCI/Regulations, FISs, and/or EO and DOJ Orders.
Perform security assessment investigations and provide recommendations to FBI HQ.
Review and analyze requests for investigations concerning security clearances.
Prepare a detailed analysis of all information developed, including potential remedial or precautionary actions to meet minimum security standards.
Assist with briefings and debriefings of individual cases as necessary.
Upload all official documents into the defined system of record, management, workflow, or tracking systems, files, and/or sub-files.

Qualifications

Minimum Experience Requirements

Three (3) years of experience in the personnel security investigative or investigative analyst field.
Experience conducting and interpreting database checks and credit reports.
Experience performing routine office administrative support functions.
Demonstrated analytical ability to critically review and analyze various types of incoming material and investigative reports to discern potential security vulnerabilities and identify viable investigative leads.
Proficient computer skills to include expert knowledge of Microsoft Office software applications (Word, Excel, Outlook, PowerPoint).
Use of Internet to conduct research and/or open-source checks in aid of investigations.
Experience with various Federal LE and IC IT systems for conducting automated record checks.
Knowledge of and experience with the use of applicable commercial and Federal Government database systems.
Experience performing database searches for information related to personnel security matters.
Distribution and update of personnel security documentation files.
Responsibility for the security of program data and materials.
Processing security clearance and BI documentation in preparation for adjudication.
Prepared documentation for Government agencies and customers.
Experience performing multiple administrative tasks dealing with databases queries, filing, processing mail, and performing audits.
Excellent oral and written communication skills.
Demonstrated knowledge and experience to conduct established Federal Government standards for investigations, BIs, and security investigations relating to suitability and security standards.
Current TS security clearance and must be capable of obtaining SCI access that includes a requirement to pass a security CI polygraph exam.

Desired Experience

Demonstrated understanding of the following security-related/investigative guidelines:
- Federal Investigative Standards (FISs)
- Security Executive Agent Directives (SEADs)
- Executive Orders (EOs)
- U.S. Code of Federal Regulations (US CFR)
- Trusted Workforce and Continuous Vetting (CV) Programs

See more jobs at ISN Corporation

Apply for this job

Security Engineer

CloudflareHybrid

terraform ● SailPoint ● Design ● ansible ● azure ● c++ ● kubernetes ● linux ● python

Cloudflare is hiring a Remote Security Engineer

About Us

At Cloudflare, we are on a mission to help build a better Internet. Today the company runs one of the world’s largest networks that powers millions of websites and other Internet properties for customers ranging from individual bloggers to SMBs to Fortune 500 companies. Cloudflare protects and accelerates any Internet application online without adding hardware, installing software, or changing a line of code. Internet properties powered by Cloudflare all have web traffic routed through its intelligent global network, which gets smarter with every request. As a result, they see significant improvement in performance and a decrease in spam and other attacks. Cloudflare was named to Entrepreneur Magazine’s Top Company Cultures list and ranked among the World’s Most Innovative Companies by Fast Company.

We realize people do not fit into neat boxes. We are looking for curious and empathetic individuals who are committed to developing themselves and learning new skills, and we are ready to help you do that. We cannot complete our mission without building a diverse and inclusive team. We hire the best people based on an evaluation of their potential and support them throughout their time at Cloudflare. Come join us!

Available Locations: Lisbon, Portugal or Austin, Texas

About the role

As a Security Engineer, you will play a key role in designing, implementing, and managing security technologies and the supporting infrastructure. You will be responsible for ensuring systems are secure, highly available, fault tolerant, and scale to meet business needs.

Work may include documenting new standard operating procedures, ensuring vendor recommended security baseline configurations are implemented, designing repeatable deployment patterns, performing disaster recovery testing, configuring new integrations, implementing a new technology, patching applications and operating systems, performing upgrades and other maintenance tasks, documenting the as-built architecture, and participate in investigations and service restorations.

What You’ll Do

Design, implement, and maintain secure infrastructure across various environments (non-production and production).
Ensure resilient and secure designs are implemented and maintained.
Drive continuous improvement while maintaining multiple environments.
Engage in proactive risk management and incident response planning.
Develop or utilize automation to streamline repeatable tasks.Contribute to the creation and dissemination of knowledge about the designs within the company.

Qualifications

Experience with deploying and administering Kubernetes in an enterprise environment.
Experience with deploying and administering Linux systems in an enterprise environment.
Experience with deploying and administering Cloudflare products (access, tunnels, waf) Experience implementing, intergrading, and supporting identity and access management (IAM) technologies.
Experience deploying and administering enterprise solutions in GCP, Azure, and AWS.Experience implementing, integrating, and supporting application security tools within a CICD pipeline environment.
Experience with all aspects of network infrastructure. Experience in all aspects of Site Reliability Engineering (SRE).
Solid understanding of reliability engineering principles and a commitment to continuous improvement.Experience writing scripts, leveraging automation, and creating infrastructure as code to streamline processes.
Strong analytical skills focused on service availability with curiosity and thoroughness in problem-solving.
Ability to navigate ambiguity, bring clarity to complex situations, and collaborate effectively with various stakeholders.

Desired Skills

Proficient in managing IAM related technologies like SailPoint, Saviynt, OneLogin, Ping, Okta, Azure Active Directory, Cyberark, Dilenea, or Beyond Trust in diverse environments.
Proficient in managing Application Security related technologies like Veracode, Checkmarx, SonarQube, Snyk, Semgrep, Fortify, or Coverity integrated into CI/CD pipelines.
Strong background in deploying and supporting infrastructure and security technologies.
Knowledge of scripting and automation tools (e.g., Python, Terraform, Ansible).
Excellent communication and collaboration skills.

What Makes Cloudflare Special?

We’re not just a highly ambitious, large-scale technology company. We’re a highly ambitious, large-scale technology company with a soul. Fundamental to our mission to help build a better Internet is protecting the free and open Internet.

Project Galileo: We equip politically and artistically important organizations and journalists with powerful tools to defend themselves against attacks that would otherwise censor their work, technology already used by Cloudflare’s enterprise customers--at no cost.

Athenian Project: We created Athenian Project to ensure that state and local governments have the highest level of protection and reliability for free, so that their constituents have access to election information and voter registration.

Path Forward Partnership: Since 2016, we have partnered with Path Forward, a nonprofit organization, to create 16-week positions for mid-career professionals who want to get back to the workplace after taking time off to care for a child, parent, or loved one.

1.1.1.1: We released 1.1.1.1to help fix the foundation of the Internet by building a faster, more secure and privacy-centric public DNS resolver. This is available publicly for everyone to use - it is the first consumer-focused service Cloudflare has ever released. Here’s the deal - we don’t store client IP addresses never, ever. We will continue to abide by our privacy commitmentand ensure that no user data is sold to advertisers or used to target consumers.

Sound like something you’d like to be a part of? We’d love to hear from you!

This position may require access to information protected under U.S. export control laws, including the U.S. Export Administration Regulations. Please note that any offer of employment may be conditioned on your authorization to receive software or technology controlled under these U.S. export laws without sponsorship for an export license.

Cloudflare is proud to be an equal opportunity employer. We are committed to providing equal employment opportunity for all people and place great value in both diversity and inclusiveness. All qualified applicants will be considered for employment without regard to their, or any other person's, perceived or actual race, color, religion, sex, gender, gender identity, gender expression, sexual orientation, national origin, ancestry, citizenship, age, physical or mental disability, medical condition, family care status, or any other basis protected by law.We are an AA/Veterans/Disabled Employer.

Cloudflare provides reasonable accommodations to qualified individuals with disabilities. Please tell us if you require a reasonable accommodation to apply for a job. Examples of reasonable accommodations include, but are not limited to, changing the application process, providing documents in an alternate format, using a sign language interpreter, or using specialized equipment. If you require a reasonable accommodation to apply for a job, please contact us via e-mail athr@cloudflare.comor via mail at 101 Townsend St. San Francisco, CA 94107.

See more jobs at Cloudflare

Apply for this job

10d

Cybersecurity Analyst

VISTRADARemote

Mid Level ● Full Time ● 5 years of experience

VISTRADA is hiring a Remote Cybersecurity Analyst

Cybersecurity Analyst - VISTRADA - Career Page

12d

Security Operations Engineer

Unit4Kuala Lumpur, Malaysia, Remote

azure ● linux

Unit4 is hiring a Remote Security Operations Engineer

Job Description

Security Operations Engineer

Unit4 Global Cloud Operations Team is seeking a skilled Security Operations Engineer to join our international team. As part of this dynamic team, you will play a key role in maintaining the security and integrity of our cloud infrastructure and environments. You will monitor security systems, analyze threats, and manage security incidents from detection through resolution, ensuring a robust defense against emerging threats.

Key Responsibilities

- Continuous monitoring: Continuously monitor cloud environments for potential security threats.

- Threat Analysis: Analyze security alerts and logs to identify suspicious activities.

- Incident Response: Lead response efforts during security incidents, including containment, eradication, and recovery.

- Investigation: Investigate security breaches and identify root causes.

- Post-Incident Review: Conduct post-incident analysis to suggest improvements.

- Documentation: Document security incidents and maintain detailed records.

- Customer Incident Handling: Act on security incidents reported by customers or identified proactively.

- Policy Adherence: Follow established security policies and procedures.

- System Maintenance: Monitor and maintain security systems such as firewalls, intrusion detection and prevention systems, and SIEM systems.

- Preventative Measures: Implement security measures to prevent future incidents.

- Staying Current: Stay up-to-date with the latest security trends and technologies.

Qualifications

Required:

- 3+ years of relevant experience in security monitoring, analysis, and incident response.

- Knowledge and experience in hardening OS and other environments\systems.
- Knowledge and experience with security-related group policies and their implementation.

- Knowledge of forensic analysis and incident management tools.

- Familiarity with SIEM tools and security incident management.

- Strong analytical and problem-solving skills.

- Excellent communication skills, both written and verbal.

- Ability to work under pressure and manage multiple incidents simultaneously.

- Understanding of security policies and procedures.

- Experience with firewalls, intrusion detection/prevention systems, and SIEM systems.

Nice to Have:

- Familiarity with Microsoft Azure & Microsoft certifications.

- Experience with AWS.

- Experience with scripting languages (e.g. PowerShell) for automation.

- Knowledge of networking, and PKI infrastructure.

- Basic Linux skills.

See more jobs at Unit4

Apply for this job

12d

IAM Security Engineer

CloudflareHybrid or Remote

DevOPS ● terraform ● salesforce ● ansible ● api ● c++ ● typescript ● kubernetes ● python

Cloudflare is hiring a Remote IAM Security Engineer

About Us

Available Locations: Hybrid from a US Cloudflare office or Remote US

About the Department
The Identity and Access Management (IAM) team is dedicated to ensuring the secure and efficient management of user identities, access privileges, and authentication mechanisms across all company systems, applications, and data. Our mission is to safeguard the organization against unauthorized access, protect sensitive information, and enable seamless user experiences while adhering to industry best practices and compliance standards.

About the Role

As an Identity and Access Management (IAM) Security Engineer, you will play a crucial role in designing, implementing, and managing identity and access management solutions. You will be responsible for safeguarding our systems, applications, and data by ensuring secure user access, authentication, and authorization mechanisms.

A Security engineers work may include reviewing reports from various sources (automated scanners, employee reports, logs, etc.), managing and configuring automated tooling (Terraform, Open Policy Agent, Workers, etc.), building controls to enforce policy (two factor authentication requirements, role based access, etc), creating tools, reports or platforms to support the team's goals.

Desirable skills, knowledge and experience

Security engineers take part in a wide variety of tasks and projects in the team. One individual is not expected to know everything, but a working knowledge in several of the following areas is required:

Strong understanding of identity federation (SAML, OAuth, OpenID Connect, etc.)
Experience with Identity and Access Management policy application and enforcement
Experience designing, implementing, and managing IAM solutions
Experience working with Open Policy Agent
Experience working in DevOps / DevSecOps
Experience working with configuration management tools like Terraform, Ansible, etc.
Experience working with Information Technology platforms and systems
Experience with SaaS security (Google Workspace, Salesforce, Workday, Atlassian, etc.)
Experience in configuration, troubleshooting and maintenance of network security infrastructure (Web content filtering, Firewall, IDS and DLP controls)
Experience with API gateways and API security
Experience with Zero Trust security
Experience in secure configuration of cloud-based storage and data management systems
Experience with secure configuration of containerized application platforms (e.g. Kubernetes)
Advanced programming experience (Python, TypeScript, Bash, etc.)

Compensation

Compensation may be adjusted depending on work location.

For Colorado-based hires: Estimated annual salary of $151,000- $185,000
For New York City, Washington, and California (excluding Bay Area) based hires: Estimated annual salary of $168,000- $206,000
For Bay Area-based hires: Estimated annual salary of $176,000 - $216,000

Equity

This role is eligible to participate in Cloudflare’s equity plan.

Benefits

Cloudflare offers a complete package of benefits and programs to support you and your family. Our benefits programs can help you pay health care expenses, support caregiving, build capital for the future and make life a little easier and fun! The below is a description of our benefits for employees in the United States, and benefits may vary for employees based outside the U.S.

Health & Welfare Benefits

Medical/Rx Insurance
Dental Insurance
Vision Insurance
Flexible Spending Accounts
Commuter Spending Accounts
Fertility & Family Forming Benefits
On-demand mental health support and Employee Assistance Program
Global Travel Medical Insurance

Financial Benefits

Short and Long Term Disability Insurance
Life & Accident Insurance
401(k) Retirement Savings Plan
Employee Stock Participation Plan

Time Off

Flexible paid time off covering vacation and sick leave
Leave programs, including parental, pregnancy health, medical, and bereavement leave

What Makes Cloudflare Special?

Sound like something you’d like to be a part of? We’d love to hear from you!

See more jobs at Cloudflare

Apply for this job

12d

Cybersecurity Analyst

PurpleBoxIncAtlanta, GA, Remote

Design ● mobile ● api ● AWS ● javascript

PurpleBoxInc is hiring a Remote Cybersecurity Analyst

Job Description

Multiple Cybersecurity Analyst and Engineer Positions are available.

Entry Level to Mid & Senior Level
Internship, Part-Time, Full-Time

We are seeking to hire multiple Cybersecurity Analysts and Engineers to work with our customers in various security testing, architecture, implementation, support, and compliance projects. As part PurpleBox Security Services team, you will be working on challenging projects.

Responsibilities:

As a Subject Matter Expert in specific cybersecurity technologies and domains, you will provide engineering, architecture design, assessment, and technical support for projects.
As part of managed security services, you will run daily processes and tools for managing cybersecurity: Vulnerability Management, End Point Protection, Security Logging, Monitoring, and Incident Response, Security Compliance, Privacy, Security Awareness Training, and more...
As part of security testing services, performing penetration testing, ethical hacking, and security assessments against Networks, Web Applications, API, Mobile Applications, IoT Devices, and Public Cloud Infrastructure.
Collaborate in the creation of technical collateral (blog posts, whitepapers, etc...) and provide training in your area of expertise.
Give back to the community by volunteering at technical events, speaking at technical conferences, organizing local meetups, and participating in case studies.
Write, review, and edit reports, use cases, and system documentation.

Qualifications

What you know matters more to us than how you learned it. While a traditional CS background is fantastic, we are also open to candidates who are bootcamp graduates or self-taught. We are looking for people who love learning, teaching, solving problems, and working as a team. You must have a techie attitude, with a willingness to learn new things, and share and grow as a team. The qualifications we are looking for are one or more of the following. We are not looking for unicorns, do not try to check all the boxes.

Degree in Computer Science, Computer Engineering, IT Management or similar.
Expertise in networking, OS fundamentals, compute, and storage.
Experience with network and system administration (Windows/Linux, Database), open source technologies, scripting languages (Javascript, Pyhton etc.).
Experience with Vulnerability Management process and tools such as Qualys, Tenable, Rapid7.
Experience application security standards and tools such as OWASP, Netsparker, BurpSuite.
Experience with penetration testing tools such as Kali, Metasploit.
Experience with Cloud, IOT, Mobile, Web, Network Security.
Certifications desired: OSCP, OSCE, CEH, AWS Security Specialty, etc…
Strong problem solving and analytical skills.
Proficiency in written and spoken English.

See more jobs at PurpleBoxInc

Apply for this job

13d

Information Security Engineer

eTrepidMechanicsville, MD, Remote

mobile ● azure ● linux

eTrepid is hiring a Remote Information Security Engineer

Job Description

Job Overview:

As a member of the Information Security Program Team, the Information Security Engineer is responsible for participating in all aspects of planning, deploying, documenting, monitoring, & maintaining the layered security to protect the confidentiality, integrity, and availability within the corporate and client facing infrastructures. This position will focus on protecting system boundaries, keeping systems and infrastructure hardened against attacks and securing highly sensitive data, along with securing user and computer identities.

Key Responsibilities:

Perform engineering, tuning, and provide guidance of network security controls & hardening including IDS/IPS, Web Filtering, Cloud Technologies, Email/Spam, and Firewalls.
Perform engineering, tuning, and guidance to the Information Security Team for incident response & SIEM management.
Experienced in cloud security and compliance for Azure and AWS.
Manage and support Identity and Access Management.
Support the investigation and resolution of security incidents.
Perform Security User Awareness Training and Phishing campaigns.
Perform vulnerability management as well as support penetration testing and remediation.
Perform engineering, tuning, & provide guidance of mobile & endpoint security controls & hardening including AV, Endpoint Detection & Response, DLP, & encryption.
Translate security controls and requirements into system specification requirements.
Perform 3rd party vendor risk management assessments.
Plan, develop, and enhance security standards, requirements gathering, and engineer security solutions across the risk and technology portfolio.
Assist in designing computer security architecture and develop detailed cyber security designs.
Engineer, implement and monitor security measures for the protection of computer systems, storage, infrastructure, and cloud applications.
Define system security requirements, identify vulnerabilities, and coordinate remediation plans.
Support and coordinate risk assessments and security evaluations for vendors deploying solutions either on premise or in the cloud.
Participate in proof of concepts and other technical evaluations of technologies, designs and solutions and provide recommendations.
Plan and coordinate the deployment of security and vulnerability patching to all computer systems.
Prepare and document standard operating procedures and standards.
Develop technical solutions and select and implement new security tools to help mitigate security vulnerabilities and automate repeatable tasks.
Write comprehensive reports including assessment-based findings, outcomes, and propositions for further system security enhancement.
Plan/automate/deploy new infrastructure and security capabilities.
Participates in security awareness trainings, webinars, and podcasts designed as a Subject Matter Expert (SME).
Adept at Presenting in-person and virtual to customers, partners, and executives.

Qualifications

Eligibility Requirements:

BS degree in Computer Science, Information Systems or equivalent experience preferred.
CISSP certification required.
Industry certifications preferred: CISA, CISM, CEH, GIAC, or equivalent.
8+ years of relevant experience focusing on security analysis.
3+ years of experience performing Network Security with expertise configuring Firewalls, Network IDPS systems, Data-Loss Prevention (DLP), VPN, Proxy/Web content filtering, WAF, NAC, Zero-Trust, GRE/IPSec, and/or Network segmentation.
Experience managing and configuring Vulnerability Management tools, Cloud Security (including CASB & M365), Identity and Access Management tools, and/or Multi-Factor authentication
3+ years of experience performing Endpoint Security with expertise configuring AV and/or MDR/EDR solutions, hardening Windows Server and Workstation OS, and/or MDM and Mobility.
Experience performing SIEM management and tuning, incident response, forensics, playbook development, and/or SOAR tools.
Ability to employ procedures, methods, and tools for identifying, representing, and formally assessing the important aspects of alternative decisions (options) to make an optimum (e.g. best possible) decision.
Experience with IT governance and/or risk.
Strong knowledge of network & infrastructure security architecture.
Experience working with Linux and Windows operating systems.
Experience with Microsoft Azure, IaaS, PaaS, SaaS, NaaS platforms
Detailed and thorough knowledge of incident analysis and response concepts and techniques, including incident tracking process, root cause, lessons learned and process improvements.
Knowledge of compliance standards and security frameworks (COBIT, NIST, HIPAA, ISO27001/2, OWASP, PCI)
Knowledge of security regulations, frameworks and security requirements that impact SMB market (GLBA, HIPAA, PCI, NIST 800-171, NIST 800-53, NIST -CSF, CMMC)
Excellent analytical and problem-solving skills with the ability to work under pressure.
High level of personal integrity, with the ability to professionally handle confidential matters while leveraging the appropriate level of judgment.
Strong interpersonal and communication skills.
Ability to work well under stressful environments.
Ability to work extended hours and weekends when required.

See more jobs at eTrepid

Apply for this job

13d

Senior Security Engineer

ICEYEEspoo,Uusimaa,Finland, Remote

Design

ICEYE is hiring a Remote Senior Security Engineer

Role highlights:

Senior Security Engineer (IAM)
Finland
Permanent
Remote

Who are we?

ICEYE is the global leader in synthetic aperture radar (SAR) satellite operations for Earth Observation, persistent monitoring, and natural catastrophe solutions; owning and operating the world's largest SAR constellation. ICEYE is headquartered in Finland and operates from five international locations with more than 600 employees from nearly 60 countries, inspired by the shared vision of improving life on Earth by becoming the global source of truth in Earth Observation.

Our satellites acquire images of Earth at any time – even when it’s cloudy or dark – providing commercial and government partners with unmatched persistent monitoring capabilities. Information derived from our SAR images helps customers make data-driven decisions to address time-critical challenges in various sectors, such as maritime, disaster management, insurance, and finance.

Our team is a tight-knit group of experts across many disciplines (e.g., engineering, software development, radar technology, etc.). We’re innovative, driven people who strive for excellence in everything we do. Teamwork, curiosity, and having fun are core values at ICEYE, and contribute to Making the Impossible possible!!

Why should you work for us?

ICEYE is at the cutting edge of new technology and we are continuing to build and operate our commercial constellation of SAR satellites. Working with ICEYE, you will be part of making the impossible possible, whilst shaping the Earth Observation industry. You will work with varied, diverse and engaged colleagues to further the ICEYE mission. At ICEYE we realize that without great people we can not succeed, therefore you will be an integral, valued and appreciated colleague, with the ability to directly shape the vision and direction of the business.

We actively support Continuous Professional Development, and will provide access to a range of avenues to allow you to succeed, including courses, training and attendance at conferences. ICEYE is a place where your development, your growth and your success is a priority.

What is the role?

As a Senior Security Engineer at ICEYE, you will leverage your expertise in Identity and Access Management (IAM) and access control model design to overhaul existing practices and develop robust solutions for securing a modern and rapidly evolving work environment. This role is part of our Security Engineering team, which is responsible for both building a secure self-service platform for most daily developer actions and working with developers and product managers on further adopting secure development practices. The goal for the team is to gather together blue and red team experts to work together on how to best solve the cat-and-mouse game that is modern cybersecurity. Because of the collaborative nature of the work, we seek individuals who excel in collaborative environments, seek continuous improvements and have the expertise to navigate the complexities of today's threat landscape.

A typical day for you will involve collaborating with platform and development oriented teams to assess and enhance our security posture. You will start your day by reviewing security events, conducting threat analysis, and performing vulnerability assessments. Throughout the day, you will design and implement access control models, manage IAM operations, and enforce the principle of least privilege for our cloud infrastructure and services. Your IAC wizardry and craftsmanship, combined with a passion for GitHub, will drive the definition, refinement, and automation of these security concepts and processes. You'll regularly evaluate the robustness of our security controls, report any identified gaps to your peers, and propose infrastructure enhancements. This feedback loop is integral to our continuous improvement approach.

You will serve as a reference for authentication and authorization design choices and implementation details across multiple projects.

What will you need to be successful in this role?

As a Senior Security Engineer, you will bring a blend of expertise and hands-on experience to enhance our security measures:

Solid expertise with IAM
Proficiency in securing API endpoints to prevent unauthorized access and mitigate potential vulnerabilities
Experience implementing Zero Trust principles
Experience with identity provider setup and management
Expertise in DevSecOps and a shift-left mentality, focusing on integrating security into every stage of the development lifecycle, along with strong automation skills
Understanding and managing public key infrastructure (PKI) systems

In addition to the above, it would be beneficial if you had the below attributes and skills:

Strong understanding and hands-on experience with OAuth2.0, OIDC, and SCIM protocols
Experience implementing and managing security services within AWS environments
Experience managing identity management platforms such as Auth0, Okta, or FusionAuth
Knowledge of Istio and Spire/SPIFFE
Understanding of OPA (Open Policy Agent)
Experience with Kubernetes
Familiarity with HashiCorp Vault

What do we offer?

A job that matters in a dynamic Earth Observation environment with a scale-up approach
An independent role with a supportive and diverse work environment
Occupational healthcare, occupational and private insurance
A yearly benefit budget to spend as you wish (i.e. on sport, transport, bike benefit, wellness, lunch, etc.)
Phone subscription with iPhone of choice
Relocation support (i.e. flight tickets, accommodation, relocation agency support)
Time for self-development, research, training, conferences, or certification schemes
Inspiring and collaborating offices and silent workspaces enable you to focus
A wide variety of the best coffee, tea, snacks, and sweets to accompany your daily space mission

Base salary range

6000 to 8000 EUR per month (gross) contingent on your experience level, and will be negotiated individually

Diversity, equity, and inclusion

At ICEYE, we believe that diversity isn't just a buzzword – it's our greatest asset.

We're committed to fostering an inclusive environment where every voice is not only heard but celebrated. We know that diverse perspectives breed innovation and creativity, which is why we actively seek out individuals from all walks of life, backgrounds, and experiences.

Whatever your background, we want you to bring your authentic self to the table. Join us and be part of a team where differences are not only embraced but cherished, because together, we're stronger.

Apply now to start your ICEYE journey, and help us continue to make the impossible possible together.

Read more about ICEYE and working with us at iceye.com

See more jobs at ICEYE

Apply for this job

13d

Senior Application Security Engineer

BoxUS Remote

scala ● Design ● mobile ● api ● java ● c++ ● python ● PHP

Box is hiring a Remote Senior Application Security Engineer

WHAT IS BOX?

Box is the world’s leading Content Cloud. We are trusted by more than 115K organizations around the world today, including nearly 70% of the Fortune 500 and leaders across deeply regulated industries (such as AstraZeneca, JLL, and Nationwide), to protect their data, fuel collaboration, and power critical workflows with secure, enterprise AI.

By joining Box, you will have the unique opportunity to continue driving our platform forward. Content powers how we work. It’s the billions of files and information flowing across teams, departments, and key business processes every single day: contracts, invoices, employee records, financials, product specs, marketing assets, and more. Our mission is to bring intelligence to the world of content management and empower our customers to completely transform workflows across their organizations. With the combination of AI and enterprise content, the opportunity has never been greater to transform how the world works together and at Box you will be on the front lines of this massive shift.

Founded in 2005, Box is headquartered in Redwood City, CA, and we have offices across the United States, Europe, and Asia.

WHY BOX NEEDS YOU

Box is looking for a Senior Application Security Engineer who will focus on thinking like a threat actor to proactively find security gaps and partner with development teams to close those gaps quickly. You will own the end-to-end secure development requirements, discovery of vulnerabilities through PenTesting and identifying remediation tactics specific to the product tech stack.

WHAT YOU'LL DO

Conduct product/feature level Design Reviews, Code Reviews, Threat Modeling, Penetration Testing and Conducing Vulnerability Risk Analysis
Lead manual security reviews and create secure coding requirements
Discover vulnerabilities through web and mobile penetration testing
Evaluate products for how a threat actor could leverage user-facing flows for malicious activity
Deliver reports on completed tests and document technical issues identified during the assessments
Collaborate with Product, Engineering and broader security teams to provide recommendations for solutions focused on decreasing business risks
Support the Bug Bounty/VDP program through triaging submissions and proposing remediations
Identify and maintain standards and procedures around the use of open source software

WHO YOU ARE

You have 5+ years of experience with creating secure coding requirements, conducting threat models and pen testing software end-to-end
You are passionate about working with developers to help them develop code securely
Expert in determining the severity of a vulnerability and their impact to the business
Expert with common security testing methodologies, including fuzz testing and using tools like Burp Suite
Experience with the process of developing, building, and shipping secure code
Understand secure engineering best practices, can articulate problem statements and propose solutions to both technically savvy and non-technical audiences
Experience with multiple languages such as Java, React, Node JS, PHP, Scala, C and/or Python to perform secure code reviews
Understand how to detect and prioritize Front End, API's, Microservices and Container vulnerabilities
You have a passion for cyber security demonstrated through participation/leadership in webinars, Capture the Flag (CTF), TryHackMe, Hack The Box, Bug Bounty Programs, submission of CVEs and/or personal security projects
Strong understanding of past, current, and emerging security exploits and the TTPs (tactics, techniques, and procedures) threat actor groups leverage
Ability to communicate and report to various levels of technical and non technical stakeholders

Head-over-heels about this role — but not sure you meet all the requirements? Apply anyway! Studies have shown that women and people of color are less likely to apply to jobs unless they meet every single qualification. At Box, we take a big-picture approach to hiring that fosters authenticity, diversity, and inclusion. If you're passionate about this opportunity, chances are, you shine pretty bright.

EQUAL OPPORTUNITY

We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, disability, and any other protected ground of discrimination under applicable human rights legislation. Box strives to respect the dignity and ‎‎independence of people with disabilities and is committed to giving them the same ‎‎opportunity to succeed as all other employees. Inclusiveness is core to our culture at Box, and we strive to ensure you get the most from your interview experience. Box makes reasonable accommodations for applicants with disabilities. If a reasonable accommodation is needed to participate in the job application or interview process, please complete this form Reasonable accommodations may include scheduling adjustments, document dictation and beyond.

Notice to applicants in Los Angeles: Box, Inc and its related branches will consider for employment, qualified applicants with criminal histories in a manner consistent with the Los Angeles Fair Chair Ordinance. The Fair Chance Ordinance is provided here.

Notice to applicants in San Francisco: Box, Inc and its related branches will consider for employment, qualified applicants with criminal histories in a manner consistent with the San Francisco Fair Chair Ordinance. The Fair Chance Ordinance is provided here.

For details on how we protect your information when you apply, please see our Personnel Privacy Notice. If you are a California-resident, please read our California Applicant & Candidate Privacy Notice here.

LI-LK1

Box is committed to fair and equitable compensation practices. Actual base salary is dependent upon factors such as: knowledge, skill level, experience, and work location. This role is also eligible for equity and benefits. For more information on benefits, check out ourhealthcare benefitsand additionalBox Benefits + Perks.

In accordance with OFCCP compliance, here is the Pay Transparency Provision.

United States Pay Range

$154,000—$226,500 USD

See more jobs at Box

Apply for this job

13d

Sr. Product Security Engineer

DatabricksRemote - Netherlands

Databricks is hiring a Remote Sr. Product Security Engineer

Job Application for Sr. Product Security Engineer at Databricks

See more jobs at Databricks

Apply for this job

17d

Application Security Analyst

ImpervaHybrid Remote, Tel Aviv, Israel

Bachelor's degree ● sql ● linux ● python

Imperva is hiring a Remote Application Security Analyst

Imperva is a multi-billion dollar cybersecurity company, that protects the world’s largest organizations from cyber-attacks. We work in a Hybrid Model from home and from the office (Tel Aviv) and We have been recognized as one of the Best 50 high-tech companies to work for in Israel 2023 by Dun & Bradstreet! Duns10-Imperva

Imperva is looking for a talented Application Security Analyst for our Threat Research Group as part of our R&D Center.

The Threat Research group is composed of elite analysts, data-scientists, researchers & developers. We research application, DDoS & database attacks, provide algorithms for new products, and are leading innovation and thought leadership initiatives.

Description:

As a security analyst in the team, you will face a versatile and broad range of challenges.

The goal is to create the most accurate and updated security content for our products, and to analyze a wide range of web application, advanced DDoS and sophisticated automated attack data to detect new threats, apply new mitigations, and produce thought leadership content (Blogs, Webinars, conferences, etc).

**The role requires once a month On-call duty, a week long, including the weekend.

Key Responsibilities:

Analyze and explore web vulnerabilities and exploits to compose an updated security content.
Analyze web traffic data and conduct innovative security researches that drive the security content of Imperva’s product forward.
Produce thought leadership content based on data analysis.
Handle security content related escalations from Imperva SOC team.
In charge of global security for more than 100,000's web applications.

Requirements:

Bachelor's degree in Computer Science, Cybersecurity, or a related field, or equivalent work experience.
At least one year of experience in a similar role, specifically within threat research or web application security.
Extensive knowledge of Web application security and familiarity with OWASP top 10 attacks.
Proven experience with SQL, Python, Linux, and JavaScript.
Strong analytical skills with the ability to identify and evaluate complex issues quickly and accurately.
Ability to work effectively both independently and as part of a team.
A proactive approach to managing ongoing projects, showcasing strong initiative and problem-solving skills.
Excellent communication skills, both verbal and written.

Legal Notice:

Imperva is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, ancestry, pregnancy, age, sexual orientation, gender identity, marital status, protected veteran status, medical condition or disability, or any other characteristic protected by law.

#LI-OK1

See more jobs at Imperva

Apply for this job

22d

Security Engineer

artificial.London,England,United Kingdom, Remote Hybrid

DevOPS

artificial. is hiring a Remote Security Engineer

About Artificial

We’re building technology for the next generation of insurers.

At Artificial, we're not just building software. We're reshaping the future of the insurance industry. Our mission is clear – to leverage the best of today's technology and automation, revolutionising how insurers and brokers operate. By removing the mundane and repetitive, we're paving the way for innovation, efficiency, and most importantly – human-centric solutions.

You’ll be working with talented people, using the latest technology in an environment where learning is supported. As an outcomes-focused business, taking ownership is not only expected but embraced, meaning the opportunity to create meaningful change is within your power.

In 2024 we secured £8M in Series A+ funding, led by Europe’s premier publicly listed fintech fund, Augmentum Fintech, with participation from existing investors MS&AD Ventures and FOMCAP IV. Join us, and take the chance to be a part of something that will change the landscape of insurance for generations.

The Role

We are looking for a skilled and passionate Security Engineer to join our dynamic team. You will be responsible for safeguarding our systems and data, implementing security measures, and responding to incidents to protect our organisation’s assets. The role combines a deep understanding of security principles with the ability to innovate and respond to emerging threats.

This is a newly created stand alone role sitting within the DevOps and Security Team and reporting to our CTO. This opportunity would be ideal for a Security Engineer with a background in a regulated industry who is looking to utilise their skills at the cutting edge of InsurTech.

Responsibilities

Design, implement, and maintain robust security infrastructure and protocols.
Monitor and analyse security alerts, ensuring timely response to potential threats.
Conduct vulnerability assessments to identify and mitigate risks.
Perform threat modelling using frameworks such as STRIDE and Mitre ATT&CK to identify and address potential security threats.
Collaborate with cross-functional teams to ensure security is integrated into all stages of product development.
Develop and enforce security policies, standards, and procedures.
Stay current with the latest security trends, threats, and technology solutions.
Perform security audits and risk assessments.
Participate in compliance-related processes and activities to ensure adherence to regulatory requirements and industry standards.
Provide guidance and training to employees on security best practices.
Manage security incidents and coordinate with internal and external stakeholders during responses.

About You

Skills, Experience and Qualifications

Proven experience in a similar security-focused role, ideally within the tech or fintech industry.
In-depth understanding of cloud-native security, particularly with AWS.
Strong knowledge of security protocols, cryptography, authentication, and authorisation.
Experience with security tools and technologies (e.g., firewalls, intrusion detection systems, SIEM).
Familiarity with regulatory requirements and standards such as GDPR, Cyber Essentials+, ISO/IEC 27001.
Prior experience of working in a regulated industry such as Finance or Insurance.

We especially want to hear from you if you have:

Experience working in a start up or scale up environment

People Skills and Behaviours

Strong interpersonal and communication skills.
Comfortable working in a fast-changing start-up environment with all the ambiguities this presents: flexibility will be needed.
Ability to work independently and collaboratively in a fast-paced, dynamic environment.
Excellent problem-solving and analytical skills.

Competitive salary
Hybrid working
Private medical insurance
Income protection insurance
Life insurance of 4 * base salary
Team social events and company parties
Salary exchange on pension and nursery fees
Access to Maji, the financial wellbeing platform
Milestone Birthday Bonus and a Life Events leave policy
Generous holiday allowance of 28 days plus national holidays
Home office and equipment allowance, and a company Macbook
Learning allowance and leave to attend conferences or take exams
YuLife employee benefits, including EAP and bereavement helplines
For each new hire, we plant a tree through our partnership with Ecologi Action
The best coffee machine in London, handmade in Italy and imported just for us!

We're an equal opportunities employer, with a strong commitment to hiring from the rich diversity within our local communities. If you’d like to request a reasonable adjustment to the hiring process, please do let us know at any time and feel free to let us know your preferred pronouns. If you feel that you don’t tick all the boxes of requirements, please do apply anyway - Artificial recognise the value of raw talent. Please be aware as part of the application process we’ll be carrying out various background checks. These may include a criminal records check, checking your credit history, contacting your previous employers and/or verifying your academic qualifications.

See more jobs at artificial.

Apply for this job

24d

Senior Security Engineer

ICEYEWarsaw,Masovian Voivodeship,Poland, Remote Hybrid

Design

ICEYE is hiring a Remote Senior Security Engineer

Role highlights:

Senior Security Engineer
Warsaw, Poland
Permanent
Hybrid

Who are we?

Why should you work for us?

ICEYE is at the cutting edge of new technology and we are continuing to build and operate our commercial constellation of SAR satellites. Working with ICEYE, you will be part of making the impossible possible, whilst shaping the Earth Observation industry. You will work with varied, diverse and engaged colleagues to further the ICEYE mission. At ICEYE we realise that without great people we can not succeed, therefore you will be an integral, valued and appreciated colleague, with the ability to directly shape the vision and direction of the business.

What will you do in this role?

As a Senior Security Engineer you will be dedicated to protecting company assets. Responsibilities include developing a SOC toolset, monitoring, alerting, and playbook creation in a rapidly expanding company environment.

Senior Security Engineer will deeply understand SOC operations and the unique challenges of securing a modern hybrid work environment. This role is within the Security team, offering opportunities for collaboration and growth in an engaging work environment. You should demonstrate strong problem-solving skills and organizational prowess, along with expertise in navigating the complexities of today's threat landscape.

You will develop new security solutions and maintain existing ones to protect the company better.
Help build an automated SOC toolset including:

Tuning EDR;
Defining and implementing correct endpoint/server logging and ensuring coverage of all assets;
Ensuring all logs are optimally streamed to SIEM;
Ensuring all systems meet securing logging requirements;
Tuning SIEM logs and troubleshooting them (indexing, normalization, acceleration);
Creating alerts for specific TTPs and activity;
Creating and maintaining SOAR playbooks to automate incident workflows for common/known alerts;
Setting up Threat Intel gathering and integrating it into our SOAR playbooks;
Creating and maintaining Detection-as-Code setup to store detection logic in a code repository.

Help with Zero Trust, PAM, Passwordless setup, and maintenance.
Investigate alerts/incidents and create relevant automation and/or additional detection.
Identify any publicly known vulnerabilities as well as new security issues that might arise from operational and functional risks.
Participate in design, implementation, and review phases and lead a technical discussion concerning security mechanisms presented in a high-level and low-level design of new solutions.
Support the team in ongoing projects.

Required:

Proven experience (5+ years) in security engineering, SOC operations, system administration, or other cyber security-relevant roles.
Curious, with up-to-date knowledge across the cybersecurity landscape
Knowledge of EDR, SIEM, and SOAR tooling and implementation experience for SOC use cases, including monitoring, alerting, and playbooks.
Experience working with modern security principles like Privileged Access Management, Passwordless, and Zero Trust Architecture.
Experience in monitoring various OSes and network devices.
Scriptwriting skills - Bash/Python/Powershell and experience in writing scripts for monitoring.
Strong communication and interpersonal skills, with the ability to explain technical concepts to non-technical stakeholders.
Ability to work independently and collaboratively in a fast-paced, dynamic environment.

Preferred:

Experience with Cloud monitoring, cloud policy/alerting tools, and related best practices.

Base salary range for this position is 15000-23000 PLN per month (gross) contingent on your experience level, and will be negotiated individually.

Poland

A job that matters in a dynamic Earth Observation environment with a scale-up approach
An independent role with a supportive and diverse work environment
A yearly benefit budget to spend as you wish (MyBenefit i.e. on sport, transport, wellness, lunch, tourism, etc.)
Relocation support (i.e. flight tickets, accommodation, relocation agency support etc.)
Time for self-development, research, training, conferences, or certification schemes
Polish language lessons
Occupational and private healthcare and life insurance
Inspiring and collaborating offices and silent workspaces enable you to focus
A wide variety of the best coffee, tea, snacks, and sweets to accompany your daily space mission

Finland

A job that matters in a dynamic Earth Observation environment with a scale-up approach
An independent role with a supportive and diverse work environment
Occupational healthcare, occupational and private insurance
A yearly benefit budget to spend as you wish (i.e. on sport, transport, bike benefit, wellness, lunch, etc.)
Phone subscription with iPhone of choice
Relocation support (i.e. flight tickets, accommodation, relocation agency support)
Time for self-development, research, training, conferences, or certification schemes
Inspiring and collaborating offices and silent workspaces enable you to focus
A wide variety of the best coffee, tea, snacks, and sweets to accompany your daily space mission

See more jobs at ICEYE

Apply for this job

25d

Senior Security Incident Response Engineer

SquareSouthern CA (Remote), CA, Remote

5 years of experience ● swift ● ruby ● linux ● python ● AWS

Square is hiring a Remote Senior Security Incident Response Engineer

Job Description

At Block, security is a collective responsibility. The mission of our Information Security team is to protect Block, our employees, and our customers while enabling rapid, secure innovation. The Detection and Response Team (DART) is critical in achieving this mission, encompassing five specialized teams: Threat Intelligence and Operations (TIO), Monitoring & Triage (M&T), Signals and Intelligence (SIGINT), Privacy Incident Response Team (PIRT), and Computer Security Incident Response Team (CSIRT).

The CSIRT is dedicated to providing immediate, effective responses to incidents involving information security or privacy within our ecosystem. Specializing in minimizing damage, preserving evidence, facilitating swift recovery, and advising on preventive measures, CSIRT/PIRT is crucial in maintaining the security and privacy of our information systems.

We are seeking a Senior Security Incident Response Engineer who is passionate about making a broad impact, solving complex problems, and collaborating to enhance our security posture.

As a Senior Security Incident Response Engineer you will:

Lead the response to critical security and privacy incidents, threats, and vulnerabilities, coordinating cross-functional teams to resolution.
Demonstrate strong composure (Incident Command) while managing incidents with a balance of urgency, intensity, and focus.
Actively monitor, analyze, and correlate activities, evaluate security events, conduct research, and provide in-depth incident analysis.
Improve and automate internal capabilities for identifying, investigating, and responding to security events.
Contribute to the creation and refinement of incident response runbooks.
Lead and participate in incident response tabletop exercises to validate processes, document lessons learned, and enhance procedures.
Develop and adjust automations, scripts, and security tool configurations to drive efficiencies and enhance investigations.
Hunt for malicious activity and provide feedback to the threat intelligence and signal development teams.
Communicate incident details clearly and concisely to key stakeholders, both technical and non-technical, in written and verbal forms.
Create After Action Review (AAR) reports and lead AAR discussions.
Participate in an on-call rotation.

Qualifications

You have:

6+ years of experience with incident response and forensics tools.
Strong security knowledge in at least one of the following domains: AWS, Google Cloud Platform, Linux, macOS, or Windows.
3-5 years of experience with malware analysis, host/network-based forensics, memory forensics, and/or network traffic analysis.
Proficiency in using the MITRE ATT&CK framework to enhance security incident detection and response.
Proficient with leading security investigations with privacy implications (e.g. GDPR, SEC, FDIC, EU or AU reporting) or other strict data protection laws.
Scripting experience (e.g., Ruby, Python, shell scripting) preferred.
Experience with open-source forensics tools like OSQuery or YARA.
Empathy, patience, a desire to learn, and a commitment to helping your teammates grow.
Excellent written and verbal communication skills, with the ability to clearly and effectively convey technical concepts.
Ability to operate both independently and as part of a geographically dispersed team.

See more jobs at Square

Apply for this job

+30d

Senior Application Security Engineer

Integral Ad ScienceRemote Ireland

DevOPS ● kotlin ● terraform ● scala ● java ● typescript ● jenkins ● python ● AWS

Integral Ad Science is hiring a Remote Senior Application Security Engineer

We are looking for a Senior Application Security Engineer to join our team to help us build and secure the Integral Ad Science (IAS) infrastructure and security operations. As part of the Information Security team you will participate and collaborate with multiple Product and R&D teams to ensure that the IAS Platform and our architecture remains secure and compliant. We are a small but growing group of dedicated hard working individuals working to secure IAS relying on our experience and industry standards and we are looking for a dynamic, personable individual to join this team. If you enjoy the pace of the changing security landscape and an environment where you can make a direct and visible impact, then IAS is the place for you.

What you’ll get to do:

- Define, plan and carry out IAS’ security framework and application protections
- Develop security standards & best practices for the R&D organization as well as recommend security enhancements to management as needed
- Develop strategies to respond to and recover from security vulnerabilities and incidents
- Educating the workforce on secure application security through training and security awareness.
- Attain Security training and certification
- Evaluate and recommend additional tools to enhance our application security posture
- Develop automation to implement and improve security processes across the SDLC
- Work with multiple teams for secure devops release cycle

You should apply if you have most of this:

- 5- 10 + years of application security experience with a development or coding background
- Direct experience working with code analysis products (SAST, DAST, IAST etc.)
- Experience with threat modeling and penetration testing using both manual and automated methods.
- CI/CD experience using tools such as Github, Jenkins, etc.
- Practical knowledge of one or more relevant coding languages (e.g. Java, python, go, kotlin, scala, typescript, etc.)
- Familiarity with architecting or developing cloud native applications with AWS services
- Familiarity with common cloud security tooling such as CSPMs, SIEM, etc.
- Familiarity with cloud provisioning tools such as Terraform, Cloud Formation with focus on security
- Experience planning, researching and developing security policies, standards and procedures with comprehensive documentation
- Experience working with development, engineering and architecture teams to ensure security best practices are followed.
- Ability to communicate effectively and work independently utilizing critical thinking skills, the ability to learn new concepts and problem solving as they arise

About Integral Ad Science

Integral Ad Science (IAS) is a leading global media measurement and optimization platform that delivers the industry’s most actionable data to drive superior results for the world’s largest advertisers, publishers, and media platforms. IAS’s software provides comprehensive and enriched data that ensures ads are seen by real people in safe and suitable environments, while improving return on ad spend for advertisers and yield for publishers. Our mission is to be the global benchmark for trust and transparency in digital media quality. For more information, visit integralads.com.

Equal Opportunity Employer:

IAS is an equal opportunity employer, committed to our diversity and inclusiveness. We will consider all qualified applicants without regard to race, color, nationality, gender, gender identity or expression, sexual orientation, religion, disability or age. We strongly encourage women, people of color, members of the LGBTQIA community, people with disabilities and veterans to apply.

To learn more about us, please visithttp://integralads.com/andhttps://muse.cm/2t8eGlN

Attention agency/3rd party recruiters: IAS does not accept any unsolicited resumes or candidate profiles. If you are interested in becoming an IAS recruiting partner, please send an email introducing your company to recruitingagencies@integralads.com. We will get back to you if there's interest in a partnership.

#LI-Hybrid

See more jobs at Integral Ad Science

Apply for this job

Other Job subscriptions you might be insterested in