Logo of Huzzle

Senior Security Engineer (Cloud and Infrastructure Security) - Pittsburgh, PA



14d ago

  • Job
    Senior & Expert Level
  • IT & Cybersecurity
  • $112K - $208K
  • Pittsburgh
  • Quick Apply

AI generated summary

  • You need 7+ years in network security, hands-on experience with security technologies and Azure cloud, scripting skills, Active Directory knowledge, and certifications in CISSP or similar. Financial services experience is a plus. Bachelor's degree in computer science preferred.
  • You will lead technical security projects, perform design reviews, manage vulnerability program, collaborate with SOC team, build threat intelligence program, support compliance initiatives, assist customer teams, and act as SME on infrastructure security.


  • 7+ years of experience on infrastructure and network security engineering/architecture, protocols and tools
  • 5+ years hands-on experience in deploying security technologies like DLP, Database Activity Monitoring, MDM, NAC 802.1x, CASB, Azure cloud environments etc.
  • 4+ years of experience in assessing Infrastructure (required) and Web Application (optional) vulnerabilities.
  • Experience with scripting (such as Python, PowerShell etc.)
  • Knowledge of Active Directory (key concepts, protocols, services, main attacks, best practices for hardening etc.)
  • Knowledge of Cryptography concepts, encryption algorithms, protocols, keys and certificates management
  • Experience with security concepts on Azure cloud environments and resources.
  • Experience with security aspects of operating SaaS environments.
  • Experience with security incident response and investigation.
  • Experience with threat intelligence operations and tooling.
  • Ability to foster collaborative, open and working relationships with technology and other stakeholders.
  • Experience with security standards and compliance programs such as, NIST, FedRAMP, PCI, SANS CIS 20.
  • An Information Security qualification or evidence of starting to work towards e.g CISSP, OSCP, AZ-500, GIAC GPEN or similar certification.
  • Ability to handle multiple tasks, prioritize and meet deadlines.
  • Prior experience in financial services, government or any other highly regulated sector is a plus.
  • Preferred Education:
  • Bachelor’s degree in computer science or equivalent


  • Identify, implement and lead the technical security projects to mitigate the risks on our hosting and corporate infrastructure (such as the review of encryption systems and key management, the hardening of servers, the hardening of Active Directory etc.)
  • Perform security and privacy design, architecture and/or configuration reviews on our hosting and corporate infrastructure and systems including Azure cloud environments, network devices, endpoints and security technologies deployed (SIEM, MDM, VPN, WAF, DDoS, NAC 802.1x etc.)
  • Review/maintain and lead the vulnerability management program including performing infrastructure vulnerability scanning, internal and third-party penetration testing, reviewing and validating ad-hoc reported security vulnerabilities.
  • Collaborate with the SOC team to improve our security investigation processes and capabilities.
  • Build a threat intelligence program by developing threat intelligence tooling and capabilities to protect our brand, monitor our external attack surface and detect potential data leakage.
  • Collaborate with IT operations, engineering and development teams to manage, monitor, track and remediate security incidents and provide a thorough post-event analysis.
  • Provide support for the technical security and privacy controls related to compliance initiatives such as FedRAMP, PCI, NIST 800-53 r5, IRAP, SANS CIS 20 and other commercial compliance efforts as necessary.
  • Assist customer and prospect facing teams with technical security questions related to the Ivalua hosting infrastructure and platform security.
  • Act as the SME on infrastructure security, expand and develop sharing of technical knowledge and collaborate with multiple internal teams to review and improve the technical architecture and efficiency of IT and security operational processes.


Will this position allow for remote work?

This full-time position requires the candidate to be physically in the office 3 days a week on a hybrid schedule, so remote work is not the primary option for this role.

What teams will the Senior Security Engineer work with?

The Senior Security Engineer will work with InfoSec, IT, and R&D teams to keep the enterprise-class SaaS service secure from various threats.

What are some of the responsibilities of the Senior Security Engineer?

Responsibilities include engineering, implementing, reviewing, and monitoring technical security controls to protect and enhance the security of the hosting infrastructure, networks, and applications. Additionally, operational security tasks such as performing security reviews on infrastructure changes, reviewing firewall rules, analyzing vulnerability or penetration testing reports, and investigating security events will be part of the role.

What skills are required for this position?

The ideal candidate should have a strong background in cloud and infrastructure security, expertise in implementing technical security controls, experience with vulnerability and penetration testing, and the ability to analyze security events and develop actionable plans to address security issues in the infrastructure.

Effectively manage all your spend and suppliers on a single platform to generate value across the Source-to-Pay cycle

Founded Year

Mission & Purpose

We are a leading provider of cloud-based Spend Management software. Our complete, unified platform empowers businesses to effectively manage all categories of spend and all suppliers, increasing profitability, improving ESG performance, lowering risk, and improving employee productivity. We are trusted by hundreds of the world's most admired brands and recognized as a global leader by renowned industry analysts. Learn more at www.ivalua.com. Follow us on LinkedIn and Twitter.