Senior Engineer, Information Security Operations
Remote (US/Canada)
Applications have closed
SecurityScorecard
10x your security performance with the world's most powerful, AI-driven platform that identifies and eliminates cyber risk across all of your attack surfaces.About SecurityScorecard
Funded by world-class investors including Silver Lake Waterman, Moody’s, Sequoia Capital, GV, Riverwood Capital, and others with over $290 million in funding, SecurityScorecard is the global leader in cybersecurity ratings and the only service with over 2M+ companies continuously rated. Founded in 2013 by security and risk experts Dr. Aleksandr Yampolskiy and Sam Kassoumeh, SecurityScorecard’s patented rating technology is used by over 16,000 organizations for enterprise risk management, third-party risk management, board reporting, due diligence, and cyber insurance underwriting. This is done by measuring your and your vendors' cyber-health by assigning a security rating of "A" through "F" based on outside-in, non-intrusive data. SecurityScorecard continues to make the world a safer place by transforming the way companies understand, improve and communicate cybersecurity risk to their boards, employees, and vendors.SecurityScorecard is headquartered in NYC with over 400 employees globally. Our culture has helped us be recognized by Inc Magazine as a "Best Workplace," "Best Places to Work in NYC" by Crain's NY, and one of the 10 hottest SaaS startups in NY for two years in a row.
About the team
You will be joining our Infosec team reporting to the CISO. Our team includes security champions within other teams and departments as we evangelize the practice of nine workstreams making up the security program. Our focus is more about process and people than tools (though we make excellent use of infosec tools) because security is not a state, but rather a process and inculcating a culture of security is where the real resilience lives. Security is in our products and also in our DNA. As part of the Infosec team you will help execute a reliable and trusted roadmap through a combination of third-party services and home-grown solutions to protect our customers, our colleagues and our intellectual property from harm.
What you will do
SecurityScorecard is looking for a Senior Engineer, Information Security Operations with an advanced skillset and leadership background to implement our Infosec roadmap and product strategy with high quality, predictability and automation. The ideal candidate will be comfortable with managing several workstreams using both influence as well as individual contributor responsibilities.
The candidate will have significant experience and passion for information security and ideally have worked in a start-up environment previously. It is not so much, however, the familiarity with specific tools and security applications or technologies that matters so much as the attitude of being curious, showing a desire to learn new things and an ability to execute on the goals and initiatives of the organization. The best way to ensure security is embedded in the software and systems development lifecycles is to implement features and functionality securely and not try to implement security as a feature or “bolt-on.”
Basic Qualifications
- 5+ years of infosec experience in incident response for a cloud-based SaaS platform
- Experience implementing DevSecOps tools and techniques
- Experience with Mobile Device Management
- Experience with Anti-Virus/Endpoint Protection programs
- Experience with Vulnerability Management Multi-Factor Authentication/SSO experience. scripting and automation experience
Additional Qualifications
- Expert knowledge of AWS/Google products and ability to secure them
- Ability to work independently as well as collaborate with others effectively
- Higher education desired, but not required
Benefits
We offer a competitive salary, stock options, a comprehensive benefits package, including health and dental insurance, unlimited PTO, parental leave, tuition reimbursements, and much more!
SecurityScorecard embraces diversity. We believe that our team is strengthened through hiring and retaining employees with diverse backgrounds, skillsets, ideas, and perspectives. We make hiring decisions based upon merit and do not discriminate based on race, religion, national origin, gender identity or expression, sexual orientation, age, or marital, veteran, or disability status.
Tags: Automation AWS Cloud DevSecOps Incident response Risk management SaaS Scripting SSO Strategy Vulnerability management
Perks/benefits: Competitive pay Equity Health care Insurance Parental leave Startup environment Unlimited paid time off
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Product Security Engineer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Security Specialist jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open Information System Security Officer (ISSO) jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open APIs-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open CI/CD-related jobs
- Open DevSecOps-related jobs