Security Engineer - Corporate Security
United States
This role will at first be focused on assisting our existing security team in developing tooling and automation workflows that will help our team grow and be more efficient. You will monitor and optimize our security alerting (SIEM), assist with vulnerability management of both internal systems as well as within our product and underlying AWS infrastructure. As our organization grows, so will our team and we expect you to branch out and specialize in an area of expertise in which you have a passion for. In other words, this is a great opportunity for you to grow with us and advance in your career.
Our clients entrust FloQast with their financial data and as such it is our mission to deliver features that provide resilience, confidence and trust in our platform. We believe in scaling security through software engineering best practices and automation. You'll play a fundamental role in shaping the future of security at FloQast and your work will have significant impact and visibility.
FloQast is headquartered in Los Angeles, CA and we are seeking US Based REMOTE Engineers.
*Visa sponsorship is NOT available at this time
What you’ll do…
- Lead third party vendor and contractor security reviews.
- Work in partnership with the FloQast IT team to design, instrument and maintain corporate IT security systems in order to ensure systems meet compliance requirements.
- Audit and harden 3rd party SaaS systems for security best practices and lead remediation efforts.
- Assist with the analysis of SIEM events, investigating and escalating issues.
- Assist ingesting logs SaaS systems into our SIEM (Panther) using Python and help write detection rules, run books etc.
- Assist maintaining existing compliance attestations and participate in risk assessment exercises.
- Assist with vulnerability management efforts, ensuring issues are triaged, prioritized and remediated according to defined SLAs.
- Support InfoSec awareness and training programs.
- Stay abreast of new and emerging security technologies and paradigms.
- Any other projects as assigned to help FloQast meet its goals.
We’re looking for someone with...
- Specific Years of Experience depends on role level (i.e. Security Engineer 1-3)
- Experience as a Security Engineer, DevOps or IT security professional.
- Experience using at least one high level programming language, preferably Python.
- Ability to lead cross functional initiatives and communicate proposals and ideas concisely.
- Experience balancing commercial objectives with security and compliance obligations.
- Foundational understanding of network and application fundamentals and best practices e.g. HTTP/S, DNS, VPN, Load Balancing, SAML, OAuth etc.
- Experience with cloud environments AWS, GCP, or Azure.
- Experience with cloud environments (preferably AWS / Azure)
- Strong sense of ownership, urgency and drive.
Nice to have attributes…
- Experience with zero-trust security concepts.
- Experience securing multi-tenant enterprise SaaS products.
- Experience with hardening tools and frameworks such as CIS benchmarks, NIST.
- Knowledge of common compliance frameworks e.g. SOC, SOX, PCI and ISO standards.
Recognized as a 2020 Technology Fast 500 by Deloitte, FloQast is the leader in accounting workflow automation created by accountants for accountants to work smarter, not harder. The cloud-based, AI-enhanced software is trusted by more than 1,000 accounting teams, including those at Lyft, Twilio, Instacart, Zoom and The Golden State Warriors—and proud to be rated #1 across all user review sites. By automating common accounting workflows and helping to streamline and make them more efficient, FloQast is the place where accounting teams want to work so they can focus on what matters most, even when that’s just going home on time. Whether automating reconciliations, documentation requests or other workflows such as the month-end close, financial reporting or payroll, FloQast enhances the way accounting teams already work to help them work smarter. Learn more at floqast.com.
- What is engineering working on? Our FQ Engineering Blog showcases a number of our recent efforts straight from the engineers working on them. Check it out!- We are fanatics about the success of our customers. Check us out on G2 Crowd - We are equally fanatic about creating and maintaining a fabulous culture of support and success for all employees. Check us out on Glassdoor- We are moving quickly and there is a huge upside opportunity in terms of career growth- FloQast offers competitive compensation, stock options, full benefits, and a positive and supportive work environment - Named among Best Places to Work by LA Business Journal in 2017, 2018 and 2019- Ranked #10 on The SaaS 1000
FloQast, Inc is committed to operating fair and unbiased recruitment procedures allowing all applicants an equal opportunity for employment, free from discrimination on the basis of religion, race, sex, age, sexual orientation, disability, color, ethnic or national origin, or any other classification as may be protected by applicable law. We aim to recruit the right people for the jobs we have to offer, and to assess applications on the basis of relevant skills, education, and experience. We welcome people of different backgrounds, experiences, abilities and perspectives. We are an equal opportunity employer and strive to provide a professional and welcoming workplace for all employees.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Automation AWS Azure Cloud Compliance DevOps DNS GCP NIST Python Risk assessment SaaS SAML SIEM SLAs VPN Vulnerability management
Perks/benefits: Career development Competitive pay Equity Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Cyber Security Specialist jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Architect jobs
- Open Senior Cyber Security Engineer jobs
- Open Product Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Staff Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open IT Security Engineer jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Application security-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Malware-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs
- Open CEH-related jobs
- Open Forensics-related jobs