Security Engineer

About Auror

At Auror, we’re empowering the retail industry to reduce theft and Organized Retail Crime, a $150 billion problem globally. It’s high volume crime that’s increasingly organized in nature and is putting people, retailers, and communities at risk every day.

Founded in New Zealand, we’re working with some of the best and largest retailers in the world across Australasia, North America, and the UK.

Auror connects people with intelligence to reduce crime. As a company, we’ve built a high-performing, positive culture with a focus on providing an inclusive environment for a diverse team. If you’re excited about reducing crime and building safer communities, for everyone, then we want you on our team.

About Auror Engineering

Collaboration is at the heart of the Engineering team at Auror. We believe that we can only build the very best software through working with each other, seeking different perspectives to solve problems. We have just started on our journey to unlock the value in the data we collect, helping to connect the dots between incidents and work towards preventing crime in real time. Every day we have tens of thousands of incidents entered into Auror from retailers around the world, including plain text reports, images and CCTV, which need to be matched, aggregated and reported back to our customers and law enforcement.

The Role

We are hiring our first Security Engineer at Auror to help raise the bar on security through collaborating with cross-functional teams to provide guidance on security best practices. You’ll be hands-on solving problems at scale and you’ll help build resilient and scalable systems.

There are two parts to this role:

1. Operations
   1. You will partner with our Site Reliability Engineer to look at the logs ingested and data in our azure portal and evaluate what trends or things that are happening and implement changes when required and possible in collaboration with Site Reliability.
   2. Being a part of the new Blue Team effort at Auror. This effort is all about analyzing the incoming traffic and events and evaluating actions to take while balancing the effort of weighing the short term engineering fixes with the larger long term security goals and initiatives. The effort of Blue teams is quite large and is newly formed and you will have the ability to help form and create those efforts for Auror. The role will also include effort for incident response and vulnerability research. Here is more on what Blue teams do.
   3. Working within the security team and partner teams to discuss and build the security policies, procedures, and methods that we will use to help shape the future of the structure of security for Auror.
   4. Looking at our existing codes in our domain to help find and remediate any outdated or vulnerable code in partnership with the development and operational teams.
2. Product
   1. Consult with other Engineers and Product Managers to analyze and propose application security standards, methods, and architectures for questions and concerns that come up in the development.
   2. In addition, working with the wider Engineering team to review features for potential security risk. This could include performing threat model analysis or setting up security feature questions.
   3. You will be involved in developing security training and guidance to the internal teams and be a part of defining the secure development (SDLC) process and procedures.

Requirements

As our Security Engineer, you’ll bring the following skills and experience:

• Security is a partnership and team effort. You must have a desire to collaborate with cross functional teams
• Being a strong communicator is key as you communicate the ‘why’ behind certain practices and processes
• Your curiosity and proactive approach will see you identifying opportunities for improvement across our security practices
• You don’t mind working in an ambiguous environment as we are at the beginning of our journey with building and scaling our security practices
• Security is an evolving set of learning practices that we should continue to pursue and learn from and about, continuing education in Security is encouraged and supported. We encourage Security training, conferences, CTF’s, community events, and mentorship opportunities.
• You share our values as we are looking for people who demonstrate a strong alignment to our Guiding Principles (you can find these on our Careers page).

With diversity and inclusion at the forefront of Aurors guiding principles, we promote a culture that celebrates diversity and inclusiveness at Auror, regardless of, but not limited to, race, gender, sexual orientation, family status, religion, ethnicity, national origin, physical disability, veteran status, or age.

You will be reporting to Scotland Symons, Director of Information Security

Scotland has been working in the technology & Security industry for the last twenty years and has worked for Microsoft, Apple, Amazon, and a few more. Coming to Auror from the US she runs the security team at Auror focusing on all of our efforts to secure the platform, code and efforts to protect Auror and its customers.
Security for me is about critical thinking and flexibility, to figure out how to protect something I lean in on how that thing works and from there can define ways to protect it. Security is also not linear and requires lots of exploration and constant learning and so my approach is that of curiosity. I try to weigh the needs of immediate protective action with long term Security efforts while weighing the need of keeping the business going. The role of Security can sometimes be stressful especially in times where there is an incident and so I try to approach things with deep honesty as well as levity. I always keep failure in mind but don’t look at it as a dead end but rather an opportunity to learn how to get up and keep going. I deeply love Science and art and am a huge fan of science fiction. I love exploration, riding motorcycles, cooking, robots, and my cats. I’m deeply excited to work with others that want to dive in and try and solve problems and be curious about the why and how of things and the patience to allow for others to come along on the journey of thinking critically and having assumptions challenged. You can check out my LinkedIn here.

Benefits

• Employee share scheme: You’ll own part of a company making a real difference!
• Flexibility: We are hard-working and outcome focused, but recognise there is more to life than work. We promote a healthy work/life blend.
• Shorter work weeks: Everyone gets Friday afternoons off, so you can start your weekend early, and do more of whatever it is that makes you happy.
• Focus on mental and physical health: We understand how vital our health is and have policies to support your wellness, including: Wellness Days (days that you can take for any reason whatsoever, not just for when you’re sick/ unwell), a wellbeing coaching service available for you and your family, and up to three expert sessions paid for every year.
• Family-friendly: We offer comprehensive parental leave and benefits for primary and non-primary caregivers, including a baby bonus and meals delivered to your door.
• Personal growth: We support our team to participate in courses, conferences, or events that will help them develop their skills.
• Team love: We have regular team lunches and social events where most (if not all) activities are during work hours.
• Making an impact: You’ll work to solve interesting problems and help us keep communities safe.

What are the next steps?

If you’re excited about our mission and you have experience and a passion for this role, please hit “Apply” below. We’re proud that Auror is a place where everyone can learn and grow. So if you’re not sure that you tick all the boxes but feel you’re close to what we’re looking for, please apply anyway as we’d love to hear from you! Once you apply, you’ll hear from us to acknowledge your application. If you have questions about any of the above, or if you have any accessibility requirements, we’ll be able to help you from there.