IT Security Engineer II

At Emburse our mission is to help make our users’ lives -- and their businesses – better. We are dramatically transforming how organizations manage corporate expenses and invoices. We humanize work by automating manual tasks and saving users’ time, so they can focus on what matters most -- their family, community, or more rewarding work. We help CFO's give their employees a simple and amazing experience while ensuring compliance and reducing costs. Our solutions are tailored for companies from start-ups to enterprises. We have more than 14,000 clients and 4.5 million users globally.
Emburse has offices across North America, including Los Angeles, Montreal, Portland (ME), San Diego, San Francisco, and Toronto, as well as locations in the UK, Germany, Spain and Australia.
Our core values - Sincerity, Empathy, Empowerment, Individuality and Teamwork - reflect who we are as a company. They are central to the decisions we make and the interactions we have with our teams, customers, and partners. As a people focused company, we are seeking candidates who align with our values.
Emburse is a proud recipient of a 2020 Tech Cares Award from TrustRadius. This award celebrates companies that have gone above and beyond to provide their communities, clients, and front line workers with support during the COVID-19 pandemic. We are a people-first company, and this award is a testament to our mission to humanize work.
Follow us to stay updated on news and job openings!
Monitor computer networks for security issues. Investigate security breaches and other cyber security incidents. Oversee installment of security measures and operate software to protect systems and information infrastructure, including firewalls and data encryption programs.        

What you'll do:

• Identifying and mitigating security risks
• Conduct network monitoring and intrusion detection analysis using various Computer Network Defense (CND) tools, such as Intrusion Detection/Prevention Systems (IDS/IPS), Firewalls, Host Based Security System (HBSS), etc.
• Respond in a timely fashion to Intrusion Alerts
• Management, and execution of internal vulnerability management program across all Clusters
• Recording of results once per quarter
• Development and execution of any required remediation
• Management of external ASV scanning vendor across all Clusters
• Recording of results once per quarter
• Development and execution of any required remediation
• Management and coordination of Penetration Testing
• External and Internal Pen Tests
• Web Application Pen Tests
• Performance of Internal Firewall pen testing in all Clusters
• Required once per year per PCI 3.2
• Recording results
• Development and execution of required remediation
• Provide incident response support, including mitigating actions to contain activity and facilitating forensics analysis when necessary
• Protecting Chrome River data, information, assets, and other resources
• Provide analytical and technical security recommendations to other team members, oversight boards, and clients; Identify requirements, based upon need or as the result of a security issue that puts organizations systems at risk
• Oversee the correlation of network activity across networks to identify trends of unauthorized use
• Implement and manage patching processes for servers, network, and storage devices
• Work with DevOps and SysOps teams to develop documentation to support ongoing security systems operations, maintenance, and specific problem resolution
• Participate in annual incident response and disaster recovery tests.
• Assisting with compliance regulations
• Active member in technical workgroups to recommend effective security configurations and architecture
• Assist in all security compliance and audits associated with each (PCI, SOC, etc.)
• Other duties as assigned

What we're looking for:

• Bachelor’s degree in Computer Science or related field
• Minimum 2-4 years’ experience in Information Security
• Knowledge of web architectures and technologies such as HTML, JavaScript, XML, REST, SOAP.
• Expertise in TCP/IP. Understanding of common network vulnerabilities, OS vulnerabilities (Linux, Windows and OSX), patching and attack patterns
• Familiarity with Enterprise Vulnerability Management tools such as Rapid 7 Nexpose and Nessus
• Technical expertise in analyzing threat event data, evaluating malicious activity, documenting unusual files and data, identifying tactics, techniques and procedures used by attackers
• Experience performing penetration tests
• Successful experience identifying, qualifying, and remediating security vulnerabilities
• Must understand security concepts and be able to link system issues to Chrome River's infrastructure
• Ability to work under moderate supervision and collaborate effectively with management
• Effective, clear communication skills in English
• Ability to build and maintain effective relationships with co-workers and customers
• Operate with a sense of urgency

Emburse provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, Emburse complies with applicable state and local laws governing nondiscrimination in employment in every location where the company has facilities. This policy applies to all terms and conditions of employment.