Senior Security Engineer

About Demandbase: 

Demandbase is the Smarter GTM™ company for B2B brands. We help marketing and sales teams overcome the disruptive data and technology fragmentation that inhibits insight and forces them to spam their prospects. We do this by injecting Account Intelligence into every step of the buyer journey, wherever our clients interact with customers, and by helping them orchestrate every action across systems and channels - through advertising, account-based experience, and sales motions. The result? You spot opportunities earlier, engage with them more intelligently, and close deals faster. 

As a company, we’re as committed to growing careers as we are to building world-class technology. We invest heavily in people, our culture, and the community around us. We have offices in the San Francisco Bay Area, New York, Seattle, and teams in the UK and India, and allow employees to work remotely. We have also been continuously recognized as one of the best places to work in the San Francisco Bay Area.

We're committed to attracting, developing, retaining, and promoting a diverse workforce. By ensuring that every Demandbase employee is able to bring a diversity of talents to work, we're increasingly capable of living out our mission to transform how B2B goes to market. We encourage people from historically underrepresented backgrounds and all walks of life to apply. Come grow with us at Demandbase!

About the Role:

Demandbase is looking for a Security engineer who thrives on finding vulnerabilities, misconfigurations, helping to design security into cloud infrastructure, and working within a great team to continually improve our security processes. Must be eager to learn, teach, cross-train, and work with multiple groups across time zones.

What you'll be doing:

• Perform Vulnerability assessments on infrastructure and assist with the mitigation of the identified vulnerabilities
• Hardening containerized environments including Kubernetes and ECS and shaping container security
• Build security automation for cloud environments
• Own the cloud security posture management program and concentrate efforts on continuous improvement of the cloud security configurations aligned to global standards like NIST 800-53, ISO 27018, Cloud Security Alliance, etc.
• Engineer and uplift adoption of PaaC (Policy as a Code) to continuous monitoring of risk configurations changes
• Work closely with DevOps teams and provide cloud security guidance
• Develop positive partnerships and work closely with other team members and stakeholders to align and execute on infrastructure changes in a secure manner to support the organization’s tools, apps, and processes
• Research the latest security best practices, staying abreast of new threats and vulnerabilities and helping to disseminate this information within the group as well as the organization

What we're looking for:

• Active listener who can grow ideas
• Ability to learn new technologies, software, and concepts quickly
• Confident and articulate with excellent written and verbal communication skills
• Excellent communication skills, and the ability to work effectively with others in small, high-performance teams

Experience:

• Experience of 4-6 years, resulting in: Strong knowledge of AWS components like EKS, ECS, KMS, RDS, IAM, ELB, cloudfront, security groups, AWS Lambda
• Strong knowledge of security vulnerabilities and remediation as listed in standards like OWASP, SANS, etc.
• Strong understanding role based security, cryptography, Networking
• Proficiency in scripting in at least one programming language
• Strong knowledge on CI/CD pipelines
• Ability to automate security testing and improve productivity in security assessments
• Supporter and contributor of DevSecOps

PLUSES

• Experience with cloud security tools like Scout Suite, Alienvault
• Cloud security certification like AWS Security Speciality, CCSP
• Experience with repository management tools like GitLab