Senior Information Security Engineer

Job description

The Vonage Information Security organization is seeking people who are passionate about information security. Vonage manages a fast-paced and constantly growing global multi-cloud environment and implements cutting-edge technology to build Vonage’s services and infrastructure. The Security team aims to enhance the security of our software applications and production systems,  develop/utilize the security and automation tools to help us maintain and report on our security posture, and to ensure that we are able to maintain our external security and compliance certifications.

As a senior security engineer, the candidate will be expected to understand modern cyber threats, how to architect and design software and networks for security-in-depth, how to detect cyber attacks, and how to efficiently respond to them.  

Job Responsibilities

• Lead system and application security reviews,  assess and document any vulnerabilities discovered, and champion the timely remediation of such findings, including the deployment of vendor security updates and the redesign of software applications and network architectures to harden against threat actors
• Serve as a key member of the Security Incident Response team --- responsible for the coordination with other engineering and business teams across the company, and/or with external partners, to implement a multi-faceted incident response and remediation action plan
• Establish the trust of, and a strong working partnership with, senior network and software developers and architects from across the company
• Design and develop tools to automate security operations or reporting tasks
• Support ongoing and new service/compliance initiatives including PCI, HIPAA, SOC2, GDPR, and ISO27001
• Perform vendor security reviews (due diligence) as a part of the vendor management procurement process
• Champion the  continuous  improvement of security monitoring, detection, and prevention capabilities.  This includes vendor technology evaluations, and the subsequent operational deployment of selected security  tools.  Key areas include network security, container security,  host-based intrusion detection systems, cloud security tools,  web application firewalls, database security monitoring systems and data classification tools, firewalls/routers/switches, proxy servers, antivirus systems, file integrity monitoring tools, and operating system logs, to name a few

The Position Requires

• A BS/MS in Computer Science, Information Security, or other related degrees
• A passion for Information Security
• Ability to function independently as directed
• Experience with scripting and/or programming in Python, Perl, bash
• Willingness to learn new technologies and systems and to continuously learn and improve
• Ability to interact with APIs using cURL, Postman, etc
• Skills in manipulating data in spreadsheets, databases, Tableau or other tools
• Knowledge of cloud computing systems - AWS knowledge is a must, Google Cloud highly desired
• Understanding of kubernetes / container ecosystems
• Demonstrated understanding of general Unix/Linux systems administration (Or similar, e.g. Ubuntu, Solaris, etc.)
• Knowledge of standard Unix infrastructure tools/protocols (DHCP, DNS, NTP, SYSLOG, SSH, IPSec etc.)
• Basic cross-functional understanding of network engineering concepts and protocols (e.g., TCP, UDP, SSL, etc.)
• Knowledge of Security incident response processes
• Knowledge and understanding of MITRE ATT&CK vectors and tools as well as the best practices for securing systems and networks
• Familiarity with Microsoft Windows, MacOSX, and Linux/Unix system administration and security controls
• Must be fluent in English and have strong verbal and written communication skills; ability to communicate effectively and clearly to both technical and non-technical staff
• Candidates must be self motivated, have strong collaborative skills, and willing to work with and learn enterprise technologies and be comfortable working in a matrixed organization

Nice to have

• Information Security and Cloud Certifications (CISSP, CISM, CompTIA, etc)
• AWS Cloud Certifications (AWS Architect, AWS Security Engineer, etc)
• Experience in Threat Hunting Processes and Tools
• Knowledge in NetSkope Security Tools and CASB Data Loss Prevention strategies
• 10+ years of experience in software development/security operations