Security Engineer

Job Description:
We are seeking an expert security professional to join our Security Engineering & Operations team and be a critical part of developing our Information Security program. Working with the Director of Security Engineering and Operations, this person will work closely with many parts of the business, including Product Engineering, IT, Support, People and Places, and Legal. The main focus will be on incident response, implementing security technologies, including repeatable processes to build out a scalable security operation team that scales with the enterprise.
Who you're committed to being:

• An inquisitive, curious, problem solver who is always looking for better ways to address privacy problems
• Persistent Problem-Solver - You know how to protect the business and as the business changes, you find ways to implement privacy standard methodologies in a practical way
• An amazing communicator and effective doer. People trust and follow you
• You use data, compassion and good judgment to approach business and people problems
• A self-starter. You like to understand the expected outcome, get the context, and then work entrepreneurially to get it done.
• You enjoy researching, implementing, and encouraging security and privacy best practices
• Organized, can be flexible, and most importantly, create solutions for any problem with a can-do attitude!

What you'll own:

• Engage with business leaders across the organization to influence and create the right technical solutions to address security problems and improve business processes
• Investigate and handle security incidents based on event data, packet captures, reports, data visualization, and pattern analysis
• Assist with internal technical reviews and compliance audits (ISO 27001, SOC 2, etc)
• Work with team members to stay up to date with the latest security breaches, technical attacks
• Assist with training and mentoring team members, engineers, and IT staff on security tools and driving security incident to resolution
• Lead the collection, analysis, and alerting of security event data from business systems

Experience you'll need:

• 4+ years of proven experience in Information Security industry
• Bachelors of Science in CIS/MIS/CS/CE, Engineering/Technology or related field or equivalent experience/training
• CISSP, GIAC Security Essentials Certification (GSEC), or similar security professional certification
• Understand information security concepts, cryptographic methods, protocols, and "industry best practices"
• Knowledge on Techniques, Tactics, and Procedures (TTPs) used by adversaries
• Experience working with Burp, secure email gateways, and Tenable vulnerability scanning tools, SIEM systems, endpoint detection and response, Cloud security tools, domain monitoring, etc.
• Familiarity with security tools such as NMAP, Nikto, JTR, Hashcat, OpenSSL, etc.

Bring yourself. Pluralsight is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age or veteran status.
#LI-SW1
#LI-Remote