Cloud Security Engineer
San Mateo, California, United States
Coupa Software, Inc.
See all of your business spend in one place with Coupa to make cost control, compliance and anything spend management related easier and more effective.Do you want to work for Coupa Software, the world's leading provider of cloud-based spend management solutions? We’re a company that had a successful IPO in October 2016 (NASDAQ: COUP) to fuel our innovation and growth. At Coupa, we’re building a great company that is laser focused on three core values:
1. Ensure Customer Success – Obsessive and unwavering commitment to making customers successful.2. Focus On Results – Relentless focus on delivering results through innovation and a bias for action.3. Strive For Excellence – Commitment to a collaborative environment infused with professionalism, integrity, passion, and accountability.
Responsibilities:
- Operation and maintenance of security solutions, devices, tools and automation
- Work with other security-focused engineers and developers to manage security tools such as web application firewalls, Denial of Service (DoS) protection, intrusion detection systems while working to integrate security into dynamic public cloud environments
- Implement automation for security tasks such as audit evidence collection, metrics collection, reporting etc.
- Act as primary incident response resource for special environments such as FedRAMP, GovCloud, etc. with knowledge/execution of special handling requirements for each.
- Demonstrate proficiency in command-line control for Windows and Linux
- Demonstrate proficiency in one or more scripting languages, including Python and Power Shell, for the purposes of automating reporting and incident response tasks.
- Provide technical hands on support to ensure consistent security controls are maintained for cloud infrastructure and microservices
- Monitor security controls to address compliance requirements such as (SOC 2) SSAE16, ISO, PCI, HIPAA, and GDPR, FedRAMP.
- Perform key Security Operations functions for Coupa’s Cloud Infrastructure: Vulnerability Management, Security Incident Management, Security Incident Response etc.
- Audit, detect and remediate critical security exposures in AWS, Azure and GCP Cloud Infrastructure
- Identify new security threats by conducting continuous monitoring, penetration testing, vulnerability assessments and log analysis
- Create reports and presentations and deliver the same to leadership both during and outside incidents in order to demonstrate progress on risk management activities
- Collaborate with team members and partners in order to actively reduce risk in key control areas such as vulnerability management, device hardening, and identity & access management.
- Maintain strong awareness of events in the external community to identify threats and opportunities for enhancement.
- Daily review and resolution of security issues as a result of assessments and other sources
- Participate in investigation of security incidents in coordination with internal teams
- Participate in security review and acceptance of new products or feature changes.
- Participate in On-Call duties
Preferences:
- Bachelor’s Degree in Computer Science or equivalent industry experience
- Certification preferences CISSP, CASP, Security +/CySA +
- Linux, Windows, AWS, and/or Azure proof of skill (such as certifications)
- Experience with Governance and Compliance process (FedRAMP, SOX and PCI)
We take care of our employees every way we can, with competitive compensation packages, as well as restricted stock units, an Employee Stock Purchase Program (ESPP), comprehensive health benefits for employees and their families, a 401(k) match, a flexible work environment, no limit vacations for exempt employees, non-exempt employees are on an accrual basis for PTO, catered lunches…And much more!As part of our dedication to the diversity of our workforce, Coupa is committed to Equal Employment Opportunity without regard for race, ethnicity, gender, protected veteran status, disability, sexual orientation, gender identity or religion.
Please be advised, inquiries or resumes from recruiters will not be accepted.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Automation AWS Azure CASP+ CISSP Cloud Compliance Computer Science FedRAMP Firewalls GCP GDPR Governance HIPAA Incident response Intrusion detection Linux Log analysis Microservices Monitoring Pentesting Python Risk management Scripting SOC SOC 2 Vulnerability management Windows
Perks/benefits: 401(k) matching Competitive pay Flex hours Flex vacation Health care Lunch / meals Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Security Operations Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Product Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open IT Security Engineer jobs
- Open Clearance-related jobs
- Open Windows-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Network security-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open IPS-related jobs