Security Engineer, Assurance
United States
We are looking for a security engineer assurance who is passionate about cybersecurity and enjoys working in a fast-paced startup environment, and who has a strong desire to learn new technologies.
The Security Engineer manages the vulnerability management program and tooling, performs security assessments and leads major security initiatives: Web Application Security, Least-privilege principle, Secrets Management, Key Management, PKI and Certificate Management, Anti-fraud protection. Responsibilities also include incident response and root cause analysis
Responsibilities:
- Manage security tools(Snyk, Fossa, Trivy)
- Manage vulnerability programs. Triage vulnerabilities, assign priorities and owners, follow up on the mitigation
- Monitor license violations.
- Perform Security Assessments and Threat Modeling
- Security Incident Response. Be part of security-on-call team in PagerDuty, act as incident commander, perform Root Cause Analysis
- Drive security initiatives(Web Application Security, Least-privilege principle, Secrets Management, Key Management, PKI and Certificate Management, Anti-fraud protection)
- Given our fast pace and startup nature, things change over time and your job responsibilities will too.
Requirements:
- BS/MS degree
- Web application security experience
- Familiarity with a modern SaaS infrastructure and application development
- Manual and/or automated Penetration Testing (white box, black box & gray box)
- Experience in scripting languages(BASH, Python, JS, etc)
- Good understanding of security risk(OWASP Top 10)
- Nice-to-have: CEH, CSSLP, GIAC, OSCP, OSCE, or other related industry recognized certifications
- Familiarity with major security protocols
- Collaboration, transparency and integrity
Our Benefits: Remote workCompetitive SalaryFull Health BenefitsMonthly Wellness ReimbursementInternet and Phone ReimbursementHome Office Setup Reimbursement
Equal Employment Opportunity Statement:As an equal opportunity employer, Yugabyte is committed to a diverse workforce. Employment decisions regarding recruitment and selection will be made without discrimination based on race, color, religion, national origin, gender, age, sexual orientation, physical or mental disability, genetic information or characteristic, gender identity and expression, veteran status, or other non-job related characteristics or other prohibited grounds specified in applicable federal, state and local laws.
#LI-Remote
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: APIs Application security Bash Black box CEH Certificate management Cloud GIAC Incident response Open Source OSCE OSCP OWASP Pentesting PKI Python SaaS Scripting Security assessment SQL Vulnerabilities Vulnerability management White box
Perks/benefits: Health care Startup environment Transparency Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Officer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Cyber Security Specialist jobs
- Open Manager Pentest H/F jobs
- Open Cybersecurity Analyst jobs
- Open Product Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Staff Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Security Specialist jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open IT Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Security Operations Analyst jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open APIs-related jobs
- Open SaaS-related jobs
- Open Java-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open IDS-related jobs
- Open DevOps-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open DoD-related jobs