Senior Security Engineer

United States

Full Time Senior-level / Expert
Everbridge logo
Everbridge
Apply now Apply later

Posted 1 month ago

About the Position:As a senior security engineer, you will support the security engineering function at Everbridge to ensure appropriate and effective security architecture, and controls protecting Everbridge information assets, including Everbridge SaaS products. This role is responsible for close alignment with Everbridge engineering, architecture, and DevOps teams to support a secure build process, and help with continual evolution of analysis and prioritization of identified security vulnerabilities related to coding, platform and systems.
Responsibilities will also include ongoing researching, developing and supporting the integration of security systems. The role operates in collaboration with other Information Services team members to mentor, evangelize, improve and maintain the overall security posture of Everbridge companies, products and information assets. The senior security engineer role maintains a critical function of ensuring operational effectiveness of systems and processes globally.
About the Team:Our security engineering team strives to take a pragmatic approach when proposing security solutions, implementing security best practices, and guiding our architecture toward a thoughtful and tailored security-first posture.

What you'll do:

  • Assess, design, implement, automate, and document security processes and solutions deployed in Amazon Web Service (AWS) and other third-party cloud solutions
  • Take part in vulnerability management efforts, and systematic approach to an automated and priority-based program
  • Design architecture, methods, and controls required to meet security, compliance, and audit requirements
  • Proactively stay current with developments in relevant technologies
  • Create and share unique ways to solve challenges within Everbridge companies
  • Develop tools to enable SOC team to investigate and resolve security violations by providing postmortem analysis to illuminate the issue, and identify causes, possible solutions, and preventative measures
  • Work with engineering and release teams to develop procedures to automate security tasks during code builds and deployment
  • Report unresolved security exposures, misuse of resources, and noncompliance situations using defined escalation processes
  • Assist and train team members in the use of cloud security tools and the resolution of security issues
  • Collaborate with the DevOps team to help them deliver secure infrastructure and servers in cloud environments.

What you'll bring:

  • 4+ years of technical security experience with top-tier cloud computing companies.
  • 4+ years of experience with security products, threat modeling, security design, infrastructure security, security architecture, cryptography, and broader security technologies.
  • Security certifications such as: Certified Information Systems Auditor (CISA), SANS GIAC, CompTIA Security+, CompTIA CASP, Certified Ethical Hacker (CEH), Certified Information Systems Auditor (CISA)
  • Experience with a common vulnerability management solution such as Qualys, container scanners, etc.
  • Experience with the development, deployment, and automation of security solutions in AWS, GCP, Azure, etc.
  • Solid understanding of Amazon Web Services (AWS) including VPC, ELB, IAM, KMS, EC2, Config, CloudTrail, CloudFormation, Lambda, AWS CLI, and others
  • Experience penetration testing, and reviewing code and or architectures
  • Experience with a broad range of security technologies including, SAST, DLP, IDS/IPS, IAM, Certificate Management, etc...
  • Knowledge of network based, system level, and application layer attacks and mitigation methods
  • Some level of proficiency with commonly used coding/scripting languages such as, python, go, JAVA /JS , Scala, and OCCA

Bonus if:

  • Certified Information Systems Security Professional (CISSP)
  • Bachelor’s degree in a security or computing-related field
  • Knowledge of technical security control environments and compliance frameworks including CSA CCM, ISO 27017, FedRAMP
  • Experience in conducting security audits and assessments
  • Experience working with container technologies
  • Experience with configuration management systems such as salt and terraform
  • Interesting projects in your GitHub repository
Bridger Culture: 
At Everbridge, we have a mission that matters – to keep people safe and businesses running during critical events. Our “Bridgers” join Everbridge to make a positive impact on the world through their work. The core of our company culture is built around making a difference. Our people are dedicated to solving problems during difficult times and challenging situations as our software was built to save lives. We are a rapidly growing organization transforming the field of critical event management and need passionate, committed and determined individuals to help us carry out our mission. Our environment is dynamic, and our culture is constantly evolving and expanding in order to provide the best employee experience. Click here to learn more about what we do. Passionate about our mission? Want to #BeTheBridge? Apply to be a part of our team today! Everbridge is an Equal Opportunity/Affirmative Action Employer. All qualified Applicants will receive consideration for employment without regard to race, creed, color, religion, or sex including sexual orientation and gender identity, national origin, disability, protected Veteran Status, or any other characteristic protected by applicable federal, state, or local law.
Job tags: Architecture Audits Automation AWS Azure CASP CEH CISA CISSP Compliance Cryptography DevOps FedRAMP GIAC Go IDS IPS Java Lambda Penetration testing Python Qualys SaaS SANS Vulnerabilities Vulnerability management
Job region(s): North America
Job stats:  7  1  0
  • Share this job via
  • or

More Information Security position highlights