Security Engineer

📋 Description

• Take full ownership of a significant portion of our defensive infrastructure from start to finish.

• Develop, implement, and oversee security awareness initiatives and phishing simulation exercises.

• Engage in the rollout and ongoing management of Endpoint Detection & Response systems.

• Enhance our network defenses for Zero Trust network access and DNS security.

• Oversee and manage our External Attack Surface Management (EASM) platform, which includes continuous monitoring, finding triage, and coordination of remediation efforts.

• Collaborate with our third-party penetration testing partner on scoping, logistics, findings review, and tracking remediation efforts.

• Monitor and react to security alerts across our infrastructure, including SIEM, EDR telemetry, and related tools.

• Take responsibility for relevant SOC 2 controls and engage in vendor assessments, new tool evaluations, and various ad hoc projects.

⛳️ Requirements

• 5-8 years of experience in an information security position with hands-on technical duties.

• Strong foundation in security operations, including alert handling, incident triage, and log analysis.

• Familiarity with EDR principles and endpoint security; direct experience with CrowdStrike is advantageous but not mandatory.

• Knowledge of Zero Trust and SASE frameworks; experience with Cloudflare One is a plus but not essential.

• Exposure to DAST, EASM, or tools related to external attack surfaces.

• Sufficient Application Security fluency to evaluate SAST results and engage in meaningful discussions about critical issues.

• Familiarity with SIEM tools, monitoring, and response; experience with DataDog is beneficial.

• Experience with security awareness platforms such as KnowBe4 or similar is advantageous.

• Relevant certifications are appreciated — CompTIA Security+, CySA+, PenTest+, or equivalent; we prioritize demonstrated skills over mere credential accumulation.

• Excellent written communication skills.

🏝️ Benefits

• Generous paid holiday schedule, including an entire week off for our Winter Holiday Shutdown.

• Comprehensive paid time off policies covering vacation, sick leave, parental leave, and bereavement leave.

• Medical coverage with $0 co-pay.

• Telehealth services.

• Dental insurance.

• Vision care.

• Health Savings Account (HSA) with significant employer contributions.

• Flexible Spending Accounts (FSA).

• Company-provided Life Insurance and Accidental Death & Dismemberment (AD&D) coverage.

• Company-funded Short & Long Term Disability coverage.

• Company-sponsored Employee Assistance Program (EAP).

• Matching 401(k) plan with immediate full vesting.

• On Demand Pay - enables access to a portion of your earned wages before payday with same-day deposit.

• Internet and Gym reimbursement!

• Work computer equipment supplied.