Security Engineer

Vbrick is an industry-leading company that enables organizations to leverage the power of video to engage, empower, and transform. Our industry leading Rev enterprise video platform is a complete solution for businesses to capture, manage, and securely distribute live and on-demand video globally at-scale to any device. The world's most widely recognized brands adopt Vbrick solutions to overcome network complexity and risk in order to meet critical live video needs from CEO all-hands meetings to team broadcasts and to support innovative uses of on-demand recorded videos for sales, marketing, training, compliance, security, and user-generated content. Vbrick solutions integrate with and complement unified communications systems, and provide the analytics and intelligence to maximize return on video investments.

The Information Security Engineer will play a pivotal role in promoting and enhancing the security culture at Vbrick. This role involves advocating for best security practices, ensuring compliance with security policies, and collaborating with various departments to mitigate security risks. The ideal candidate will have a strong background in information security, excellent communication skills, and a passion for educating and empowering others.

You will be involved in developing and maintaining our company's security posture, protecting our SaaS application hosted in AWS, improving our vulnerability management program, reviewing source code, and ensuring the integrity, confidentiality, and availability of our corporate network. As a part of the information security team, you will work closely with our cloud operations, IT, and development teams to identify potential security threats and vulnerabilities, design, automate, and implement security solutions, and respond to security incidents.

Location

The preferred location for this position is near our Herndon, VA office which may involve an occasional in-person meeting in the office with our adjacent teams. Remote candidates will also be considered if located within the continental United States- East Coast highly preferred

Key Responsibilities

• Policy Compliance and Improvement:
  • Monitor compliance with information security policies and procedures.
  • Assist in the development, review, and updating of security policies and standards.
  • Report non-compliance issues and work with relevant teams to ensure remediation.
• Collaboration and Support:
  • Work closely with IT, HR, Legal, and other departments to integrate security practices into business processes.
  • Provide guidance and support during security incidents and investigations.
  • Participate in security assessments and audits.
• Risk Management:
  • Identify potential security risks and vulnerabilities within the organization.
  • Recommend and implement measures to mitigate identified risks.
  • Assist in the development and maintenance of the company's risk management framework.

• Technical Focus Areas:
  • Design, automate, deploy, and maintain security solutions and controls to protect both our SaaS application hosted in AWS as well as our corporate network infrastructure
  • Implement, automate, and maintain systems to manage vulnerabilities and follow security policies and procedures
  • Monitor and analyze security events and incidents to identify potential security threats and vulnerabilities
  • Conduct security and privacy assessments, vulnerability assessments, and remediate issues
  • Ensure compliance with industry standards and regulations (e.g., FedRAMP, SOC 2, GDPR)

Qualifications

• Education:
  • Bachelor's degree in Information Security, Computer Science, Information Technology, or a related field.
  • Relevant certifications such as CISSP, CISM, CISA, or equivalent are highly desirable.
• Experience:
  • Minimum of 3-5 years of experience in information security or a related field.
  • Proven experience in developing and conducting security awareness programs.
  • Experience working with AWS, Azure, Cisco networking, and a mixture of Microsoft and Linux technologies
  • Knowledge of security technologies such as firewalls, IDS/IPS, SIEM, DLP, and cryptograph
  • Experience with vulnerability management, security assessments, penetration testing
  • Understanding of security frameworks and standards such as NIST, ISO, and CIS
• Skills and Competencies:
  • Excellent communication and presentation skills.
  • Ability to influence and motivate employees at all levels.
  • Strong analytical and problem-solving skills.
  • Ability to work independently and as part of a team.

    A little about us:

    • Casual and flexible environment to encourage creativity and collaboration
    • Flexible hours and 4 weeks of PTO to enjoy life!
    • Competitive compensation, annual bonus program and generous benefits
    • We want all our employees to be a shareholder. We offer stock options for all employees.

Vbrick is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, and other protected characteristics.