Security Engineer
Redwood City, CA
Applications have closed
Security team at Poshmark is responsible for securing our application platform, cloud infrastructure, and IT systems to protect Poshmark and its 80 million Community members. You will collaborate with other security and engineering teams on identifying vulnerabilities in our application while improving visibility and implementing application security best practices throughout SDLC.
Responsibilities
- Identify security gaps and harden application platforms, cloud infrastructure, and IT systems.
- Duties include: harden and define security requirements for AWS and IT infrastructure by implementing security best practices.
- Implement technical controls to continuously assess security and compliance posture, and drive vulnerability and patch management.
- Monitor and analyze security event logs/alerts to identify security incidents.
- Lead security incident investigation, containment, eradication, and recovery.
- Uncover root causes of sophisticated security incidents and targeted attacks that span systems, network, and code; improve detection and incident response capabilities through automation and orchestration as code, and provide remediation solutions.
- Reduce Mean-time-to-detect (MTTD) and mean-time-to-respond (MTTR) through automation.
- Perform security gap analysis, security incident investigation, containment, eradication, and recovery.
- Partner with SRE, IT, fraud, and engineering teams to harden the technological environment, respond to incidents, and lead
investigations. - Detect and respond to security incidents in web applications, IT, and AWS infrastructure and document and explain risks, share security recommendations, and share incident data with technical stakeholders.
Requirements:
- Master’s degree (or foreign equivalent) in Computer Science, Information Security, Computer Engineering, Electrical Engineering, or a related field.
- Two (2) years of experience in each of the following: Detecting and responding to security incidents in web applications, IT, and AWS infrastructure; Security solutions, including SIEM, Firewall, VPN, IDS/IPS, or HIDS; AWS security services, including IAM, CloudTrail, Athena, S3, WAF, and GuardDuty.
- AWS best practices.
- Scripting languages, including Bash, and Python.
About Us
Poshmark is a leading social marketplace for new and secondhand style for women, men, kids, pets, home, and more. By combining the human connection of physical shopping with the scale, ease, and selection benefits of e-commerce, Poshmark makes buying and selling simple, social, and sustainable. Its community of more than 80 million registered users across the U.S., Canada, Australia, and India, is driving the future of commerce while promoting more sustainable consumption. For more information, please visit www.poshmark.com, and for company news and announcements, please visit investors.poshmark.com. You can also find Poshmark on Instagram, Facebook, Twitter, Pinterest, and YouTube.
Why Poshmark?
At Poshmark, we’re constantly challenging the status quo and are looking for innovative and passionate people to help shape the future of Poshmark. We’re disrupting the industry by combining social connections with e-commerce through data-driven solutions and the latest technology to optimize our platform. We’re nothing without our amazing team who deliver an unparalleled social shopping experience to the millions of people we connect each day.
We built Poshmark around four core values: 1) focus on people to create empowered communities that drive success; 2) together we grow to support each other to strive for our dreams; 3) lead with love to foster genuine connections built upon a foundation of respect; and 4) embrace your weirdness to accept and empower one another on their own unique journey. We’re invested in our team and community, working together to build an entirely new way to shop. That way, when we win, we all win together. Come help us build the most connected shopping experience ever.
Here’s what we’ll set you up with:
- A team that is invested in your career growth and training
- Competitive salary and equity, based on experience
- Company sponsors up to 100% cost for your health, dental and vision plans and up to 90% for your dependents
- Work alongside world-class talent
- Flexible vacation / paid time off policy
- Parental leave
- Personal style encouraged (or not, whatever you’re in to)
Poshmark is an Equal Opportunity Employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security Automation AWS Bash Cloud Compliance Computer Science E-commerce Firewalls IAM IDS Incident response IPS IT infrastructure Python S3 Scripting SDLC SIEM VPN Vulnerabilities
Perks/benefits: Career development Competitive pay Equity Flex hours Flex vacation Health care Parental leave
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open IT Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open Forensics-related jobs
- Open Kubernetes-related jobs