Logo of Huzzle

Senior Security Engineer (Cloud and Infrastructure Security)

image

Ivalua

13d ago

  • Job
    Full-time
    Senior & Expert Level
  • IT & Cybersecurity
  • $112K - $208K
  • Redwood City
    Fremont
  • Quick Apply

AI generated summary

  • You need 7+ years of network security experience, hands-on knowledge of security technologies, scripting skills, expertise in Azure cloud security, threat intelligence experience, and passion for staying up-to-date on standards and compliance. Bachelor’s in computer science preferred.
  • You will lead technical security projects, review infrastructure vulnerabilities, collaborate with SOC, build threat intelligence program, assist with compliance initiatives, and provide support for technical security controls.

Requirements

  • 7+ years of experience on infrastructure and network security engineering/architecture, protocols and tools
  • 5+ years hands-on experience in deploying security technologies like DLP, Database Activity Monitoring, MDM, NAC 802.1x, CASB, Azure cloud environments etc.
  • 4+ years of experience in assessing Infrastructure (required) and Web Application (optional) vulnerabilities.
  • Experience with scripting (such as Python, PowerShell etc.)
  • Knowledge of Active Directory (key concepts, protocols, services, main attacks, best practices for hardening etc.)
  • Knowledge of Cryptography concepts, encryption algorithms, protocols, keys and certificates management
  • Experience with security concepts on Azure cloud environments and resources.
  • Experience with security aspects of operating SaaS environments.
  • Experience with security incident response and investigation.
  • Experience with threat intelligence operations and tooling.
  • Ability to foster collaborative, open and working relationships with technology and other stakeholders.
  • Experience with security standards and compliance programs such as, NIST, FedRAMP, PCI, SANS CIS 20.
  • An Information Security qualification or evidence of starting to work towards e.g CISSP, OSCP, AZ-500, GIAC GPEN or similar certification.
  • Ability to handle multiple tasks, prioritize and meet deadlines.
  • Prior experience in financial services, government or any other highly regulated sector is a plus.
  • Preferred Education:
  • Bachelor’s degree in computer science or equivalent

Responsibilities

  • Identify, implement and lead the technical security projects to mitigate the risks on our hosting and corporate infrastructure (such as the review of encryption systems and key management, the hardening of servers, the hardening of Active Directory etc.)
  • Perform security and privacy design, architecture and/or configuration reviews on our hosting and corporate infrastructure and systems including Azure cloud environments, network devices, endpoints and security technologies deployed (SIEM, MDM, VPN, WAF, DDoS, NAC 802.1x etc.)
  • Review/maintain and lead the vulnerability management program including performing infrastructure vulnerability scanning, internal and third-party penetration testing, reviewing and validating ad-hoc reported security vulnerabilities.
  • Collaborate with the SOC team to improve our security investigation processes and capabilities.
  • Build a threat intelligence program by developing threat intelligence tooling and capabilities to protect our brand, monitor our external attack surface and detect potential data leakage.
  • Collaborate with IT operations, engineering and development teams to manage, monitor, track and remediate security incidents and provide a thorough post-event analysis.
  • Provide support for the technical security and privacy controls related to compliance initiatives such as FedRAMP, PCI, NIST 800-53 r5, IRAP, SANS CIS 20 and other commercial compliance efforts as necessary.
  • Assist customer and prospect facing teams with technical security questions related to the Ivalua hosting infrastructure and platform security.
  • Act as the SME on infrastructure security, expand and develop sharing of technical knowledge and collaborate with multiple internal teams to review and improve the technical architecture and efficiency of IT and security operational processes.

FAQs

What is the work schedule for this position?

This full-time position requires the candidate to be physically in the office 3 days a week on a hybrid schedule.

Who will the Senior Security Engineer work with?

The Senior Security Engineer will work with InfoSec, IT, and R&D teams to keep the enterprise-class SaaS service secure.

What are the key responsibilities of the Senior Security Engineer?

The key responsibilities include engineering, implementing, reviewing, and monitoring technical security controls to protect and enhance the security of the hosting infrastructure, networks, and applications.

What operational security aspects will the Senior Security Engineer be involved in?

The operational security aspects will include performing security reviews on infrastructure changes, reviewing firewall rules, analyzing results from vulnerability or penetration testing reports, and investigating security events by analyzing logs.

Effectively manage all your spend and suppliers on a single platform to generate value across the Source-to-Pay cycle

Technology
Industry
501-1000
Employees
2000
Founded Year

Mission & Purpose

We are a leading provider of cloud-based Spend Management software. Our complete, unified platform empowers businesses to effectively manage all categories of spend and all suppliers, increasing profitability, improving ESG performance, lowering risk, and improving employee productivity. We are trusted by hundreds of the world's most admired brands and recognized as a global leader by renowned industry analysts. Learn more at www.ivalua.com. Follow us on LinkedIn and Twitter.