Senior Security Engineer
Belfast, Northern Ireland;
As a Senior Security Engineer at Signifyd you will work to control and improve security outcomes across the company. You will operate at the front line of risk, identifying vulnerabilities and threats, and collaborate cross-functionally across the organization to implement defenses.
As a core member of our security team, you will have latitude to further define and mature our appsec capabilities. You will work directly with software developers as the voice of security, where you will guide our security architecture and ensure consistent and effective mediation of risks.
You will also own one or more foundational security projects, and work with project managers and engineers to successfully execute on the software specifications you help develop.
Finally, you will work to increase our visibility into data, infrastructure, entitlements and logs; you will develop and improve detections for things that matter within our SIEM and other systems, and make sure our infrastructure is always-on and customer data stays secure.
About you
You are passionate about information security and desire to solve security problems at scale. You live and breathe the CIA Triad, or maybe prefer the Parkerian Hexad. You have experience building software, breaking it, or both.
Job Responsibilities
- Execute secure design reviews for engineering projects to improve our ability to prevent problems before code is deployed, and ensure security by design
- Prioritize, specify and guide foundational security projects within engineering (e.g., secrets management, vulnerability management, logging and alerting), and work with project managers and engineers to successfully execute
- Increase visibility of infrastructure, data, entitlements and activity, and improve our ability to detect those things that cause risks and effectively respond to them
- Consult to colleagues as an advocate for security in the organization
- Support successful compliance audits
- Investigate security alerts and incidents, and research vulnerabilities
Job Experience Requirements
Core requirements:
- You can easily float from builder to breaker and know how to engage with both tribes
- You know a variety of security controls to reach for to control risk, and have implemented these in the past
- You know a thing or two about cloud security, and have deployed infrastructure yourself using IaC
- You have previously balanced security concerns with other priorities in an engineering team and know when to compromise
- You’re not afraid of a $ or # prompt and your mental toolbox has cool CLI tools in it
- You are not afraid of a Beyondcorp world, and have thoughts on how to secure it
- You have excellent written and verbal communication skills, with the ability to present technical information to a variety of audiences
Any of these would be a plus:
- Security certifications
- Knowledge of one or more compliance or security control frameworks, especially SOC 2, ISO 27001 and/or PCI-DSS
Benefits in our UK offices:
- 4-day workweek
- A competitive base salary (with plenty of room for growth)
- An equally competitive equity package
- Annual Performance Bonus or Commissions
- Pension matched up to 8%
- ‘Day one’ access to great health, dental and optical insurance scheme
- 25 days of annual leave (plus 10 stat)
- Flexibility
- Great family-friendly benefits (12 weeks of full-pay parental leave for mums and dads)
- Regular paid social events organized by our social committee
- BetterHelp Online Therapy Membership
- Dedicated learning budget through Learnerbly
We are committed to equality of opportunity for all staff and applications from individuals are encouraged regardless of age, disability, sex, gender reassignment, sexual orientation, pregnancy and maternity, race, religion or belief and marriage and civil partnerships.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security Audits CIA Cloud Compliance ISO 27001 SIEM SOC SOC 2 Vulnerabilities Vulnerability management
Perks/benefits: Career development Competitive pay Equity Health care Insurance Parental leave Salary bonus Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Security Specialist jobs
- Open Security Researcher jobs
- Open Chief Information Security Officer jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open IT Security Engineer jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open APIs-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open CI/CD-related jobs