Join a rapidly growing data start-up specializing in data value engineering as a Sr. Security Operations Engineer and play a key role in securing our cloud-hosted applications while ensuring compliance with industry standards. Our innovative platform offers a comprehensive approach to data management, covering collection, analysis, packaging, visualization, and exchange. Designed for flexibility and integration, our system empowers organizations and individuals to take control of their data, recognize its ownership, and maximize its value.
Responsibilities:
Hands on engagement in security review, implication and compliance issues with Developers, DevOps, customers.
Drive security audit reviews and certification process
Configure, integrate and implement various security controls using tools and technologies (IAM, MFA, SSO, Firewall/IDS/IPS systems, Network/application vulnerability scanners etc) in cloud environment
Understanding of Security Industry Standards and Compliance Frameworks and Requirements (PCI-DSS, SOC2, CIS configuration Benchmarks, NIST, GDPR, LGPD, etc.)
Build dashboards of various security controls implemented for reviews by compliance team
Develop and augment security process automation through scripting or programming
Work collaboratively with developers, staff and business partners
Document tasks, procedures, environments in configuration
Requirements:
3+ years of experience in security operations
2+ years of experience designing, building, implementing, integrating and/or maintaining code
Deep understanding of security controls for data security in cloud hosted applications based on PCI-DSS & SOC2 standards
Experience in vulnerability assessment using tools like GitHub Advanced Security, SonarQube, Qualys etc
Experience working in AWS cloud environments (Azure or GCP a nice to have).
Ability to develop automation scripts and perform design reviews
Strong experience implementing security controls and integration in cloud hosted environments using tools and technologies (IAM, MFA, SSO, DLP systems, Firewall/IDS/IPS systems, Secure Configurations, network/application vulnerability scanners)
Understanding of the security industry standards and compliance frameworks, controls and requirements (PCI-DSS, SOC2, CIS configuration Benchmarks, NIST, GDPR, LGPD, etc.)
Understanding of OWASP vulnerabilities and common network/application/API attacks
Some experience in task automation with Python/Shell Scripting
At least one of the security certifications, like CISA, CISM, GSEC, CASP+
Education:
Bachelor of science degree (or equivalent) in computer science, engineering, or similar experience
Type: Fulltime and Hybrid work schedule
Location: Mountain View, CA
Salary Range: $155K-$175K/Year, plus benefits
**Staples is business to business. You're what binds us together.**While you may know Staples as the world's leading office supply company, Staples Promotional Products - a division of Staples - is a national leader in the promotional products industry. At Staples Promotional...
...0 hours per week. BHB offers flexible scheduling options, including five 8-hour days or four 9-hour days with a half day on Friday morning. While the start and end times of the workday can be adjusted, employees are expected to establish and maintain a consistent schedule...
...Now Hiring: Director, Community Physicians Group (Missoula, MT) A newly opened leadership opportunity is available for a Director of Community Physicians Group in Missoula, Montana. Reporting directly to the Chief Executive Officer, this role is responsible for overseeing...
...Position Title: UiPath developer Location: Greenwich, CT Status: Contract 6 to 12 months, with the opportunity for possible conversion to permanent/full-time employment with the client. Status: Onsite or Hybrid Shift / Schedule: TBD Pay Range: US...
...Job Title: Salesforce Fonteva Senior Developer Location: Washington, DC (Onsite 2 days/week) Experience: 8+ Years Job Description: We are seeking a highly skilled and experienced Salesforce Fonteva Senior Developer to lead technical efforts and enhancements...