Senior Security Engineer

Control Risks is looking to hire a Senior Security Engineer to support a Fortune 50 Tech client of ours. This role will work with a team of other embedded consultants to help test various controls within the client atmosphere to ensure they are compliant with the company’s security requirements.

The successful candidate will have a strong background in security engineering and/or penetration testing. The candidate will be able to work independently and can work well under ambiguous circumstances.

Responsibilities include, but are not limited to:

• Creating, updating, and maintaining threat models for a wide variety of software projects
• Perform technical security assessments, code audits and design reviews.
• Develop technical solutions to help mitigate security vulnerabilities.
• Advocate security and secure practices throughout Figma
• Conduct assessments to identify current and new attack vectors against Figma products and services.
• Help run our pen-testing and offensive security exercises as well as our bug bounty program.
• Independently solve security problems that require novel methods or approaches
• Influence your team’s and partners’ process, priorities, and choices to improve outcomes

Requirements

Basic qualifications

• BS in Computer Science or related field, or equivalent work experience.
• 4-6 years of experience with at least three of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, penetration testing, cloud security, mobile security, and network security.
• Knowledge and understanding of security engineering, system and network security, authentication and security protocols, cryptography, or application security.
• Experience reading and writing in at least one programming language, preferably Linux.
• You demonstrate excellent judgement in assessing and prioritizing technical risk.
• You have a strong application security background with a focus on scalable solutions.
• You have experience building and securing complex AWS architecture.
• You have excellent written and verbal communication skills.
• You have experience creating processes that drive consistent security outcomes.

Preferred Qualifications

• You demonstrate excellent judgement in assessing and prioritizing technical risk.
• You have a strong application security background with a focus on scalable solutions.
• You have experience building and securing complex AWS architecture.
• You have experience creating processes that drive consistent security outcomes.
• Certifications from one of the following organizations: GIAC, CompTIA, (ISC)2, EC-Council, OSCP, etc.

Benefits

• Control Risks offers a competitively positioned compensation and benefits package that is transparent and summarized in the full job offer.
• We operate a discretionary bonus scheme that incentivizes, and rewards individuals based on company and individual performance.
• Control Risks supports hybrid working arrangements, wherever possible, that emphasize the value of in-person time together - in the office and with our clients - while continuing to support flexible and remote working.