Information Security Engineer
San Francisco
Applications have closed
Media.Monks
We’re Media.Monks – global content, data, and media powerhouse. Our solution is simple and singular: Disrupting the industry, driven by digital.Position description:
We are looking for an InfoSec Engineer who is able to understand the security objectives, interpret the identified risks, and implement the tools & processes to improve the level of security and can proactively detect opportunities for improvement.
This person will be responsible for knowing our security configuration holistically, assessing security in the different environments, proposing improvements or innovations to the current architecture and providing information required for compliance and audit processes. We are looking for someone who is passionate about what they do, and not afraid to speak up or make suggestions.
Key accountabilities:
- Assess security risks over the infrastructure, architecture, applications and services that are part of the company’s technological environment
- Monitor security events for alerts within our tech stack, and investigate any potential breaches
- Routinely perform internal security tests (vulnerability assessments, penetration tests, security assessments) and security audits
- Assist in the implementation of security measures for the protection of endpoints, systems, accounts, and data
- Write comprehensive reports including assessment-based findings, outcomes and propositions for further system security enhancement
- Provide input for a continuous vulnerability management over the IT environment
- Work with other teams to help prepare and document standard operating procedures and protocols related to security
- Interact with other teams, to ensure we are able to find the best security solutions for our company and use case, while also ensuring compliance with legal and private commitments.
- Handle security breaches according to defined policies and procedures, ensuring that all staff members are informed of the situation accordingly.
- Provide topics and materials for security-focused trainings
- Research and propose new security tools to implement different kinds of controls and measures
Minimum Qualifications:
- Bachelor’s degree in Computer Science/Engineering/Information Security.
- +3 of experience in similar roles
- Experience in performing vulnerability assessment, penetration test or ethical hacking
- Experience in implementing security best practices on infrastructure in cloud and on-premise and on SaaS (hardening).
- Knowledge of vulnerability management processes
- Knowledge of networking security (architecture, protocols, VPNs)
- Knowledge of web application security and secure development (SSDLC), APIs security
- Knowledge of cloud environments (GCP, AWS)
- Fluent english (written and oral)
Qualities:
- Good communication
- Ability to confidently present findings to those with either a technical or non-technical background.
- Self-directed, resourceful, and a critical thinker with attention-to-detail and proactive problem-solving skills.
- Ability to self-organize and plan activities with commitment towards results.
- Ready to learn new contents both from others or self-learned.
- Passionate about self-improvement and suggesting improvements to processes or activities.
Preferred Qualifications:
- InfoSec Certification (e.g. CISSP, Comptia Sec, CEH, etc)
- Experience with Fortinet security solutions
- ISO27001 framework knowledge
What we offer:
- Competitive salary
- Full coverage health insurance including Medical, Dental, and Vision
- 401K with Company contribution
- Flexible vacation time
- Paid Parental Leave after 1 year of service
- Cell phone plan
#LI-KZ1
#LI-Remote
About Media.Monks:
Media.Monks is on a mission to create a new future for this industry. Our vision? Build everything with a belief that changing for good comes from changing who does the work. Yep, that means you. Welcome to the party—one global, cross-cultural collective with a passion for using our skills to create better and a better world. That’s how we’re able to connect the dots between data, content, digital media, and technology from everywhere we are—a true end-to-end model. Joining the Media.Monks collective means having the opportunity to create award-winning work with some of the most gifted, focused, joyful, talents from all over the world.
At Media.Monks, you’ll be joining a highly ambitious company on a global mission to win the decade by changing the industry for good. Partner to 8 of the 10 most innovative companies in the world, Media.Monks works with established as well as up-and-coming global, regional, DTC and B2B brands, helping them own their data and build out customer ecosystems to elicit smart, efficient, high-impact engines for growth. We deliver table stakes quickly, creating cost efficiencies from day one to push up the creative effectiveness of our work with every cycle.
We are an equal-opportunity employer committed to building a respectful and empowering work environment for all people to freely express themselves amongst colleagues who embrace diversity in all respects. Including fresh voices and unique points of view in all aspects of our business not only creates an environment where we can all grow and thrive but also increases our potential to produce work that better represents—and resonates with—the world around us.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: APIs Application security Audits AWS CEH CISSP Cloud Compliance CompTIA Computer Science Ethical hacking GCP ISO 27001 SaaS Security assessment VPN Vulnerability management
Perks/benefits: 401(k) matching Career development Competitive pay Flex vacation Health care Medical leave Parental leave Startup environment Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Analyst jobs
- Open IT Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open ISO 27001-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open Windows-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open DevOps-related jobs
- Open Security assessment-related jobs
- Open Kubernetes-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open CI/CD-related jobs
- Open IDS-related jobs
- Open DevSecOps-related jobs
- Open CEH-related jobs