Senior Security Engineer
Denver, Colorado, United States
Coupa Software, Inc.
See all of your business spend in one place with Coupa to make cost control, compliance and anything spend management related easier and more effective.Do you want to work for Coupa Software, the world's leading provider of cloud-based spend management solutions? We’re a company that had a successful IPO in October 2016 (NASDAQ: COUP) to fuel our innovation and growth. At Coupa, we’re building a great company that is laser focused on three core values:
1. Ensure Customer Success – Obsessive and unwavering commitment to making customers successful.2. Focus On Results – Relentless focus on delivering results through innovation and a bias for action.3. Strive For Excellence – Commitment to a collaborative environment infused with professionalism, integrity, passion, and accountability.
Responsibilities:
- Assist in securing and operating our government cloud environment
- Participate as a senior security engineer as an escalation point for security related events including: incidents, vulnerabilities, and compliance related controls within Coupa’s cloud based production services and platform
- Collaborate with Engineering and Operations teams to address security related issues
- Monitor and analyze security data to ensure we maintain and exceed key performance indicators
- Troubleshoot and document security incidents
- Conduct security risk assessments on behalf of internal and external customers providing consistent technical measurements of risk
- Act as point of contact for government security control requirements, metrics, and standards
- Produce and present security reports for Coupa functional teams and leadership
- Automation of security assessments and other security related SecOps tasks
- Resolve security issues from assessments and other sources and deliver upon assigned security projects
- Implement and maintain security solutions to detect and prevent security related risks including, but not limited to: firewalls, hids/fim, workload protection, antivirus, sast/dast, application security, single sign-on, and custom tools
- Contribute to Coupa’s security strategy
- Advocate Security best practices throughout Coupa
- Define and iterate upon best security practices
- Participate in Security Incident On-call rotation
Requirements:
- 5+ years of experience in an equivalent security related role
- Veteran and/or permanent resident with green card/citizenship
- Experience with equivalent technologies, processes, and field preferred
- Bachelor’s degree in computer science, electronic engineering, or related field
- Strong experience in web application security eg (XSS, CSRF, SQL injection)
- Familiarity with Cloud Computing and Software as a Service
- Hands-on operational experience with security tools such as Palo Alto Twistlock, Prisma Cloud, file integrity monitoring, firewalls, antivirus, Sonarqube, application security, Kibana, SSEC, Rapid7, BurpSuite, Nmap and SSO
- 2+ years of experience with automation using Java, Perl, PHP, Python, Ruby or equivalent
- Strong communication skills; both written and oral
- Ability to work in a team environment
- Experience with designing and/or delivering tools
- Software or systems development experience a plus
- Infrastructure delivery experience a plus
We take care of our employees every way we can, with competitive compensation packages, as well as restricted stock units, an Employee Stock Purchase Program (ESPP), comprehensive health benefits for employees and their families, retirement and savings plans with employer match, a flexible work environment, no limit vacations for exempt employees, non-exempt employees are on an accrual basis for PTO, catered lunches…And much more!
As part of our dedication to the diversity of our workforce, Coupa is committed to Equal Employment Opportunity without regard for race, ethnicity, gender, protected veteran status, disability, sexual orientation, gender identity or religion.
Please be advised, inquiries or resumes from recruiters will not be accepted.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security Automation Burp Suite Cloud Compliance Computer Science CSRF DAST Firewalls Java Monitoring Nmap Perl PHP Python Risk assessment Ruby SAST SecOps Security assessment Security strategy SonarQube SQL SQL injection SSO Strategy Twistlock Vulnerabilities XSS
Perks/benefits: Competitive pay Flex vacation Health care Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Product Security Engineer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Security Specialist jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open Information System Security Officer (ISSO) jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open APIs-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open CI/CD-related jobs
- Open DevSecOps-related jobs