Senior Security Engineer
India - Remote
Applications have closed
Demandbase, Inc.
About Demandbase:
Demandbase is the Smarter GTM™ company for B2B brands. We help marketing and sales teams overcome the disruptive data and technology fragmentation that inhibits insight and forces them to spam their prospects. We do this by injecting Account Intelligence into every step of the buyer journey, wherever our clients interact with customers, and by helping them orchestrate every action across systems and channels - through advertising, account-based experience, and sales motions. The result? You spot opportunities earlier, engage with them more intelligently, and close deals faster.
As a company, we’re as committed to growing careers as we are to building world-class technology. We invest heavily in people, our culture, and the community around us. We have offices in the San Francisco Bay Area, New York, Seattle, and teams in the UK and India, and allow employees to work remotely. We have also been continuously recognized as one of the best places to work in the San Francisco Bay Area.
We're committed to attracting, developing, retaining, and promoting a diverse workforce. By ensuring that every Demandbase employee is able to bring a diversity of talents to work, we're increasingly capable of living out our mission to transform how B2B goes to market. We encourage people from historically underrepresented backgrounds and all walks of life to apply. Come grow with us at Demandbase!
About the Role:
Demandbase is looking for a Security engineer who thrives on finding vulnerabilities, misconfigurations, helping to design security into cloud infrastructure, and working within a great team to continually improve our security processes. Must be eager to learn, teach, cross-train, and work with multiple groups across time zones.
What you'll be doing:
- Perform Vulnerability assessments on infrastructure and assist with the mitigation of the identified vulnerabilities
- Hardening containerized environments including Kubernetes and ECS and shaping container security
- Build security automation for cloud environments
- Own the cloud security posture management program and concentrate efforts on continuous improvement of the cloud security configurations aligned to global standards like NIST 800-53, ISO 27018, Cloud Security Alliance, etc.
- Engineer and uplift adoption of PaaC (Policy as a Code) to continuous monitoring of risk configurations changes
- Work closely with DevOps teams and provide cloud security guidance
- Develop positive partnerships and work closely with other team members and stakeholders to align and execute on infrastructure changes in a secure manner to support the organization’s tools, apps, and processes
- Research the latest security best practices, staying abreast of new threats and vulnerabilities and helping to disseminate this information within the group as well as the organization
What we're looking for:
- Active listener who can grow ideas
- Ability to learn new technologies, software, and concepts quickly
- Confident and articulate with excellent written and verbal communication skills
- Excellent communication skills, and the ability to work effectively with others in small, high-performance teams
Experience:
- Experience of 4-6 years, resulting in: Strong knowledge of AWS components like EKS, ECS, KMS, RDS, IAM, ELB, cloudfront, security groups, AWS Lambda
- Strong knowledge of security vulnerabilities and remediation as listed in standards like OWASP, SANS, etc.
- Strong understanding role based security, cryptography, Networking
- Proficiency in scripting in at least one programming language
- Strong knowledge on CI/CD pipelines
- Ability to automate security testing and improve productivity in security assessments
- Supporter and contributor of DevSecOps
PLUSES
- Experience with cloud security tools like Scout Suite, Alienvault
- Cloud security certification like AWS Security Speciality, CCSP
- Experience with repository management tools like GitLab
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: AlienVault Automation AWS CCSP CI/CD Cloud CloudFront Cryptography DevOps DevSecOps IAM Kubernetes Lambda Monitoring NIST OWASP SANS Scripting Security assessment Vulnerabilities
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Security Operations Engineer jobs
- Open Information Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Analyst jobs
- Open IT Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open IT Security Engineer jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open DevOps-related jobs
- Open Security assessment-related jobs
- Open Kubernetes-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open CI/CD-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs