Job title: Security Engineer
Job type: Permanent
Emp type: Full-time
Functional Expertise: Security Engineering
Location: US
Job published: 2024-06-18
Job ID: 32882
Phone number: +13155562550
Contact email: joseph.cooper@aspironsearch.com

Job Description

My Cybersecurity Vendor is looking for their 1st Internal Security Engineer who will play a crucial role in ensuring the adoption of SaaS and cloud providers' tools and infrastructure adheres to industry-leading security standards while aligning with our organizational policies. Leveraging your expertise, you'll define and implement vital security controls, all while staying ahead of emerging threats and evolving security frameworks.

What you will be doing:  

  • Cloud Security Controls: Implementing business-focused controls to safeguard the business cloud accounts and services.
  • Work directly with the senior leaders to align the Security Operations strategy with the overall business objectives and risk management framework
  • Develop and implement a roadmap for continuous improvement of the team's capabilities
  • Collect and analyze information security threat intelligence to proactively identify and assess threats. Collaborate with security teams across the company to integrate threat intelligence into the organization's incident response plans
  • Evaluate and implement advanced threat detection technologies and techniques to enhance the organization's detection capabilities.
  • Mentor, and train security engineers, fostering a culture of continuous learning, knowledge sharing, and collaboration within the Security Operations team
  • Configuration Management: Identifying control weaknesses and implementing tools for configuration management.
  • User Empowerment: Facilitating self-service access to cloud accounts for employees.
  • Cross-Training: Collaborating with Security and Engineering teams to provide cloud controls training.
  • Risk Mitigation: Understanding threats, risks, and control gaps to develop plans for security solutions.
  • Stakeholder Engagement: Maintaining relationships with Product Managers and Company Leadership to ensure alignment with business goals.
  • Performance Metrics: Developing actionable metrics for areas of ownership to drive continuous improvement in cloud security.

 Ideal candidates will possess the following skills and experiences:

    • CNAPP (Cloud Native Application Protection Platform)
    • IaC (Infrastructure as Code)
    • SIEM (Security Information and Event Management)
    • SOC (Security Operations Center)