Security Engineer
Seattle, WA
Applications have closed
Foursquare
Foursquare provides businesses with the opportunity to list on City Guide, & consumers can search for places they love.About Foursquare
Foursquare is the leading independent location technology and data cloud platform dedicated to building meaningful bridges between digital spaces and physical places. Our proprietary technology unlocks the most accurate, trustworthy location data in the world, empowering businesses to answer key questions, uncover hidden insights, improve customer experiences, and achieve better business outcomes. A pioneer of the geo-location space, Foursquare’s location tech stack is being utilized by the world’s largest enterprises and most recognizable brands.
About the Position
Foursquare is seeking an experienced Security Engineer to lead efforts and implement solutions to keep our users' and customers' data private and our systems secure.
The Security team works with infrastructure and feature engineering teams to identify and mitigate risks to the business. We propose, design, plan and implement strategic and tactical security improvements — from remote access systems for employees, to authorization rules on our production fleet, to forward-thinking policy initiatives. Our infrastructure and feature engineering teams will be active and supportive partners, but the Security Team organizes and leads these efforts across the entire organization. We are trusted to stay one step ahead of malicious actors in a rapidly-changing threat landscape.
As part of the Security Team, your work will be instrumental in ensuring both the safeguarding of our users' data and Foursquare’s future business success.
In this role, you’ll
- Propose, design, plan, and implement strategic and tactical security improvements across the organization, including surfacing non-obvious risks and attack surfaces
- Organize and lead cross-team efforts with infrastructure and engineering teams
- Mitigate security risks and attack surfaces using a combination of policies and technological measures.
- Establish and promote security recommendations and best practices, as well as provide security expertise across our entire tech stack
- Build security automation and guardrails using Test-Driven Development, Infrastructure as Code, and serverless frameworks
- Respond to Security Events, including isolating, mitigating, and investigating active threats
- Conduct post-mortems to elevate the security posture of the company.
- Advocate for the security culture of the organization, including collaborating with stakeholders across the company
What you’ll need
- 3+ years of experience in security engineering
- 1+ years of experience in securing cloud environments (preference to AWS) with a deep understanding of Identity and Access Management
- Thorough understanding of common access control patterns (especially RBAC), AuthN/AuthZ models, SSO standards (SAML 2.0, OAuth)
- Experience developing and implementing employee remote access policies and systems
- Working knowledge of network security with a focus on cloud networking
- Strong written and verbal communication skills
- Solid background using Linux and *nix operating systems
- Proficiency in at least 1 programming or scripting language (preference to Python or Java), with a strong emphasis on Test-Driven Development -
A plus if you have
- Security research, penetration testing, or other red team experience
- Other cloud security experience (GCP, Azure, Oracle Cloud etc.)
- Experience with container orchestration systems such as Kubernetes
- Security incident response experience including real-time mitigation of ongoing attacks
- Experience in designing, architecting, and deploying large technical projects, with a focus on security
- Experience with Infrastructure as Code frameworks such as Terraform or AWS CDK.
- Experience with serverless frameworks such as AWS Lambda.
- Proficiency in conducting security investigations, including log forensics and preservation of evidence.
- Experience with understanding, predicting, and managing human factor risks
Benefits and Perks
- Fully Flexible Workplace - work from home, one of our offices or a combination of the two!
- Unlimited PTO - rest and recharge when you need it!
- Industry Leading Healthcare - comprehensive and competitive health, vision, dental, life insurance
- Savings and Investments - 401(k) with company match
- Home Office Setup - you get all necessary hardware and internet reimbursement
- Family Planning and Fertility Programs - programs via Carrot and Maven
- Employee Resource Groups - to help you stay connected
Things to know…
Foursquare is proud to foster an inclusive environment that is free from discrimination. We strongly believe in order to build the best products, we need a diversity of perspectives and backgrounds. This leads to a more delightful experience for our users and team members. We value listening to every voice and we encourage everyone to come be a part of building a company and products we love.
Foursquare is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, protected Veteran status, or any other characteristic protected by law.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Automation AWS Azure Cloud Forensics GCP IAM Incident response Java Kubernetes Lambda Linux Network security Oracle Pentesting Python Red team SAML Scripting SSO TDD Terraform
Perks/benefits: 401(k) matching Fertility benefits Flex hours Flex vacation Health care Home office stipend Insurance Team events Unlimited paid time off
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Manager Pentest H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Application security-related jobs
- Open Network security-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open IDS-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open IPS-related jobs