Senior Security Engineer
Denver, CO
Drizly is the world’s largest alcohol marketplace and the best way to shop beer, wine and spirits. Our customers trust us to be part of their lives – their celebrations, parties, dinners and quiet nights at home. We are there when it matters - committed to life’s moments and the people who create them. We partner with the best retail stores in over 1400 cities across North America to serve up the best buying experience. Drizly offers a huge selection and competitive pricing with a side of personalized content. That is what we do. Who we are is a different story.
We are more than just another tech company. There is an intellectual curiosity that occurs at Drizly. We have a desire to question, to understand, to figure it out. Bottom line, we solve it. We value not just the truth but the process to get to the truth, to deliberate, decide and then act. Most importantly, we care. We care about our customer. We care about our company. We care about our team. There will be long days and incredible challenges.
We are blazing a trail in an industry that hasn’t changed in nearly a century, and that doesn’t scare us (well, not all the time) -and even when it does, it doesn’t stop us, it energizes us.
Do you see yourself here? Read on.
Who you are
You are a tech-savvy engineer with a fundamental understanding of computer science. You get excited about security incidents, processes, efficiencies, and automation. Your friends say you have strong interpersonal skills which would allow you to effectively collaborate with all types of personalities across the business. You manage complexity by approaching problems with curiosity to define issues before acting on solutions. You have the experience, instincts, and analytical mindset to make quality, timely decisions.
You ideally have at least five years of Security Engineering experience. Additionally, you have a detailed understanding of secure code development. Experience in areas such as Cloud Security, Linux & databases. We would be really impressed if you had experience with Ruby, Go, and/or K8s. Knowledge of Networking and Forensics technologies would be ideal as well.
What the role is
In this Senior Security Engineer role, you will be an integral part of the security team, performing design review and managing security automation. You will set direction and establish a broad companywide reference architecture with a security focus that aligns to the consumer identity business and technical strategy as well as adapts to growing industry changes. While the security team is small but mighty, you will make a direct impact in security as Drizly continues to scale. You will provide training, guidance, and assistance to development to others on the team. We are always thinking of newer and better ways to tackle hard security problems and we believe in the power of automation.
In this role you will:
- Help automate security as part of CI/CD process
- Review all new software features from a security perspective
- Actively contribute to code to help push security forward
- Act as the security architect for the enterprise
- Provide input to security risk impact assessment
- Work closely with engineering to sustain processes and/or convert manual integrations to automated pipeline activities
- Cultivate security ownership in the product teams
- Mentor and lead other security team members as well as non- security
- Work in an Agile environment, in some of the following technologies: Containers (Docker, Kubernetes, or similar), Infrastructure as code (Vagrant, Docker, Ansible, Chef, Terraform, or similar), Continuous integration (Jenkins, Bamboo, Hudson, or similar), Integration of Security testing tools into pipeline, Defect tracking (Jira, Bugzilla, ServiceNow, or similar), Source code management (GitLab, GitHub, BitBucket, or similar), QA Testing tools (nUnit, jUnit, Selenium, Cucumber, or similar), Application security testing tools (SAST, DAST, IAST, SCA, or similar), Various *nix distributions, Cloud environment (AWS, Azure, or similar)
The Other Stuff:
- Colorado salary range: $95,540 to $112,400
- One-on-one professional coaching with an external expert
- Health, Dental and Vision Insurance
- Flexible vacation policy
- Commuter benefits
- 401(K) Plan with Employer Match
- Added perks
Drizly is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.
BEFORE YOU APPLY...
We ask that you please remove all identifying information from your resume before you upload it on the next page in an effort to help us remove unconscious bias from our resume review process. Drizly is committed to cultivating an inclusive environment where a diverse group of people can and want to do their best work, and that starts with our hiring practices. Identifying information includes your name, photos, LinkedIn URL, email address and more.
Tags: Agile Ansible Application security Automation AWS Azure Bitbucket CI/CD Cloud Computer Science DAST Docker Forensics GitHub Jira Kubernetes Linux Ruby SAST Strategy Terraform
Perks/benefits: 401(k) matching Career development Competitive pay Flex vacation Health care Insurance
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Architect jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open IDS-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs
- Open IPS-related jobs
- Open CEH-related jobs