Senior Cybersecurity Engineer

Location: Remote

Job Type: Full Time / Permanent

In this role, the candidate will join the Company with 5-7 years of tangential or direct information security experience, with an IT background, and passion for cybersecurity. This is a highly technical role that requires knowledge across numerous technology disciplines. Responsibilities include engineering design, analysis, and support of multiple security technologies within the areas of application and platform security, network and endpoint security, identity and access management, and digital fraud to help assure the confidentiality, integrity, and availability of enterprise assets. The role will support the business by working alongside other employees to protect the Company, learning and using technologies to help detect and prevent cyberattacks, support various security-focused tools from both a growth and care-and-feeding standpoint, partner with 3rd parties to evolve security capabilities, and leveraging internal and external training to further hone skills. In addition to strong technical skills, the candidate is expected to coach and mentor junior employees and develop security technology documentation for both internal use and consumption by the larger Technology team.

Responsibilities:  Owning and acting as SME for cybersecurity technologies. Researches, designs, and implements cyber security solutions for organization systems and products that comply with all applicable security policies and standards. Works with IT and internal and external business partners to ensure that security is factored in the evaluation, selection, installation and configuration process of in house developed applications and vendor software. Analyzes and makes recommendations to improve network, system and application architectures. Examines web and mobile traffic to identify anomalous behaviors and recommend solutions or rulesets to mitigate. Continuously improving security toolsets and advancing their use. Assists in the review and update of cyber security policies, architectures and standards. Assists in responding to audits, penetration tests and vulnerability assessments. Partnering with teammates across all of Technology Coaching and mentoring junior teammates.

Education & Experience:  Bachelor’s Degree in Computer science, management information systems, cybersecurity, or equivalent experience 5-7 years of experience in Mitigation Rule build, Web Application Firewall and CDN Property Management, DevOps, Bot and Fraud Mitigation, App Testing Security+ (preferred not required). Vendor certifications (preferred not required) GIAC (preferred not required) GWAPT (preferred not required) Required: Experience with CDN Routing, Web Application Firewalls, and anomaly detection and response. Required: Understanding of Web Applications and Mobile Applications from a design and secure perspective Required: Experience with API discovery and security. This can include API Gateway experience or rule building around API usage. Required: the desire to work with a talented, growing team of cybersecurity professionals Required: scripting capabilities (Python, bash, PowerShell) Nice to have: Developer experience (Java, .Net preferred) Nice to have: experience in DevSecOps and application security best practices.