Security Engineer

United States

Applications have closed

Everbridge

Keep people safe and organizations running with Everbridge. Empower Resilience. Anticipate, mitigate, respond to, and recover from critical events.

View company page

About the Position:As a security engineer, you will support the security engineering function at Everbridge to ensure appropriate and effective security controls protecting Everbridge business functions and Everbridge SaaS products. This role is responsible for analysis of security risks and applicable security systems and processes globally. Design and deployment of security systems will be performed. The role operates in collaboration with other Information Services team members to improve and maintain the overall security posture of Everbridge companies as well as protect data assets. The security engineer role maintains a critical function of ensuring operational effectiveness of systems and processes globally.  About the Team:Our security engineering team strives to take a pragmatic approach when proposing security solutions, implementing security best practices, and guiding our architecture toward a security-first posture

What You'll Do:

  • Assess, design, implement, automate, and document security processes and solutions deployed in Amazon Web Service (AWS) and other third-party cloud solutions
  • Take part in vulnerability management efforts, and systematic approach to an automated and priority-based program
  • Design architecture, methods, and controls required to meet security, compliance, and audit requirements
  • Proactively stay current with developments in relevant technologies
  • Create and share unique ways to solve challenges within Everbridge companies
  • Monitor system logs, SIEM tools and network traffic for unusual or suspicious activity
  • Investigate and resolve security violations by providing postmortem analysis to illuminate the issue, and identify causes, possible solutions, and preventative measures
  • Work with engineering and release teams to develop procedures to automate security tasks during code builds and deployments
  • Respond to and, when appropriate, resolve or escalate security incidents
  • Report unresolved security exposures, misuse of resources, and noncompliance situations using defined escalation processes
  • Assist and train team members in the use of cloud security tools and the resolution of security issues
  • Collaborate with the Ops team to build infrastructure and servers on AWS

What You'll Bring:

  • Minimum 4 years of information security experience with at least 1 year of security experience working with cloud technologies
  • Security certifications such as: Certified Information Systems Auditor (CISA), SANS GIAC, CompTIA Security+, CompTIA CASP, Certified Ethical Hacker (CEH), Certified Information Systems Auditor (CISA)
  • Experience with a common vulnerability management solution such as Tenable or Qualys
  • Experience with the development, deployment, and automation of security solutions in AWS
  • Solid understanding of Amazon Web Services (AWS) including VPC, ELB, IAM, KMS, EC2, Config, CloudTrail, CloudFormation, Lambda, AWS CLI, and others
  • Experience extracting pertinent information from SIEM solutions, AWS audit, logs, reports, and other such sources of data
  • Experience with a broad range of security technologies including, SAST, DLP, IDS/IPS, IAM, Certificate Management, etc...
  • Knowledge of network based, system level, and application layer attacks and mitigation methods
  • Some level of proficiency with commonly used coding/scripting languages such as bash, python, go, etc...
  • Working knowledge of Nmap, Nessus, Kali Linux, Wireshark, Metasploit Framework, and other security related tools

Bonus if:

  • Certified Information Systems Security Professional (CISSP)
  • Knowledge of technical security control environments and compliance frameworks including CSA CCM, ISO 27017, FedRAMP
  • Experience in conducting security audits and assessments
  • Experience working with container technologies
  • Experience with configuration management systems such as salt and terraform
  • Interesting projects in your GitHub repository

Bridger Culture: 
At Everbridge, we have a mission that matters – to keep people safe and businesses running during critical events. Our “Bridgers” join Everbridge to make a positive impact on the world through their work. The core of our company culture is built around making a difference. Our people are dedicated to solving problems during difficult times and challenging situations as our software was built to save lives. We are a rapidly growing organization transforming the field of critical event management and need passionate, committed and determined individuals to help us carry out our mission. Our environment is dynamic, and our culture is constantly evolving and expanding in order to provide the best employee experience. Click here to learn more about what we do. Passionate about our mission? Want to #BeTheBridge? Apply to be a part of our team today! Everbridge is an Equal Opportunity/Affirmative Action Employer. All qualified Applicants will receive consideration for employment without regard to race, creed, color, religion, or sex including sexual orientation and gender identity, national origin, disability, protected Veteran Status, or any other characteristic protected by applicable federal, state, or local law.

Tags: Audits Automation AWS Bash CASP+ CEH Certificate management CISA CISSP Cloud Compliance CompTIA EC2 FedRAMP GIAC GitHub IAM IDS IPS Kali Lambda Linux Metasploit Nessus Nmap Python Qualys SaaS SANS SAST Scripting SIEM Terraform Vulnerability management

Perks/benefits: Salary bonus Team events

Region: North America
Country: United States
Job stats:  20  2  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.