Software Security Engineer - DevSecOps
United States
In this role you will focus on two primary objectives; the security of FloQast’s infrastructure and the availability and scalability of Security's own infrastructure. You will work closely with our security and AWS cloud infrastructure teams to develop new, and maintain existing, tooling and automation workflows. You will be responsible for assisting in creating and maintaining deployment and monitoring tools and provide optimizations that allow for iterative improvement of engineering team productivity.
Our clients entrust FloQast with their financial data and as such it is our mission to deliver features that provide resilience, confidence and trust in our platform. We believe in scaling security through software engineering best practices and automation. You'll play a fundamental role in shaping the future of security at FloQast and your work will have significant impact and visibility.
FloQast is headquartered in Los Angeles, CA and we are seeking US Based REMOTE Engineers.
*Visa sponsorship is NOT available at this time
What you’ll do…
- Work with Security and DevOps teams to plan, deploy, and maintain security solutions in a cloud environment.
- Prepare, maintain and document standard operating procedures and protocols.
- Configure and troubleshoot security infrastructure systems.
- Develop and maintain technical solutions and security tools to help mitigate security vulnerabilities and automate repeatable tasks.
- Assist with security reviews, threat modeling, code reviews, vendor integrations and third party contractor requests.
- Assist with our vulnerability management efforts across functional teams (AWS cloud enterprise and application security) to ensure we meet our SLAs and help mitigate risks.
- Assist with transitioning existing security tooling and assist other security team members with setting up their tools through our CI/CD process.
- Review and analyze new software solutions that FloQast is incorporating in our tech stack to ensure they follow our internal policies as well as ensure the implementations are secure.
- Monitor AWS security tools such as Security Hub and Guard DutyAny other projects as assigned to help the Company meet its goals.
We’re looking for someone with…
- Specific years of experience depends on role level (i.e. Security Engineer 1-3)
- Experience with software development, systems administration, and cloud-based application management.
- Experience with building and maintaining systems within the AWS ecosystem using VPC, ECS (Docker), EC2, S3, ELB/ALB, IAM, Lambda, and CloudWatch.
- Technical understanding of foundational security concepts or mechanisms, e.g. principle of least privilege, HTTP, DNS, VPN, SAML, OAuth etc.
- Understanding of infrastructure security, scaling, failover, load balancing, etc.
- Infrastructure automation tools experience (e.g. Terraform, CloudFormation, etc.)
- Experience with CI/CD systems (preferably Jenkins and experience with pipelines)
- Scripting experience preferably Python, Nodejs, or Shell.
- Effective collaboration and documentation skills.
- Experience with log aggregation strategies (SIEM)
- Knowledge of web application security.
Preferred Qualifications:
- Bachelor in Computer Science or related field.
- Work Experience and/or AWS certification may be considered in lieu of a Degree.
- Familiarity with security best practices.
- Experience with Linux administration, troubleshooting, performance tuning & security.
Recognized as a 2020 Technology Fast 500 by Deloitte, FloQast is the leader in accounting workflow automation created by accountants for accountants to work smarter, not harder. The cloud-based, AI-enhanced software is trusted by more than 1,000 accounting teams, including those at Lyft, Twilio, Instacart, Zoom and The Golden State Warriors—and proud to be rated #1 across all user review sites. By automating common accounting workflows and helping to streamline and make them more efficient, FloQast is the place where accounting teams want to work so they can focus on what matters most, even when that’s just going home on time. Whether automating reconciliations, documentation requests or other workflows such as the month-end close, financial reporting or payroll, FloQast enhances the way accounting teams already work to help them work smarter. Learn more at floqast.com.
- What is engineering working on? Our FQ Engineering Blog showcases a number of our recent efforts straight from the engineers working on them. Check it out!- We are fanatics about the success of our customers. Check us out on G2 Crowd - We are equally fanatic about creating and maintaining a fabulous culture of support and success for all employees. Check us out on Glassdoor- We are moving quickly and there is a huge upside opportunity in terms of career growth- FloQast offers competitive compensation, stock options, full benefits, and a positive and supportive work environment - Named among Best Places to Work by LA Business Journal in 2017, 2018 and 2019- Ranked #10 on The SaaS 1000
FloQast, Inc is committed to operating fair and unbiased recruitment procedures allowing all applicants an equal opportunity for employment, free from discrimination on the basis of religion, race, sex, age, sexual orientation, disability, color, ethnic or national origin, or any other classification as may be protected by applicable law. We aim to recruit the right people for the jobs we have to offer, and to assess applications on the basis of relevant skills, education, and experience. We welcome people of different backgrounds, experiences, abilities and perspectives. We are an equal opportunity employer and strive to provide a professional and welcoming workplace for all employees.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security Automation AWS CI/CD Cloud Computer Science DevOps DevSecOps DNS Docker EC2 IAM Lambda Linux Monitoring Node.js Python S3 SaaS SAML Scripting SIEM SLAs Terraform VPN Vulnerabilities Vulnerability management
Perks/benefits: Career development Competitive pay Equity Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open IT Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs