Description:

As a Senior Cybersecurity Engineer at Spreedly, you will be a crucial member of the Information Security Team within the Engineering department.
You will report directly to the Chief Information Security Officer and contribute to fortifying systems, networks, and data against evolving cyber threats.
This role involves running various security efforts to ensure the confidentiality, integrity, and availability of Spreedly’s data, focusing on securing applications, content delivery networks (CDN), and managing vulnerabilities across the technology stack.
Responsibilities include performing comprehensive security assessments of applications, coordinating penetration testing programs, and collaborating with development teams to integrate security into the software development lifecycle (SDLC).
You will implement and manage application security tools, develop secure design and coding standards, and design security measures for CDNs.
The role requires monitoring CDN configurations, managing vulnerability scans, and conducting security monitoring activities.
You will act as a subject matter expert for incident response efforts and mentor team members while collaborating with compliance teams to ensure adherence to regulatory standards.
Staying updated on the latest security trends and threat intelligence is also a key aspect of this position.

Requirements:

You must have 5+ years of experience in cybersecurity, focusing on application security, CDN security, and vulnerability management.
Proficiency in programming and scripting languages such as Python, Ruby, JavaScript, or similar is required.
Experience in Linux systems management and cloud environment configuration and management is essential.
Hands-on experience with application security tools and CDN platforms is necessary.
In-depth knowledge of secure coding practices, OWASP Top 10, and common attack vectors is expected.
A strong understanding of vulnerability management frameworks and tools is required.
You should be able to convey complex security concepts to both technical and non-technical audiences.
Additional skills valued include prior experience at a SaaS-based company or startup and relevant certifications such as CISSP, OSCP, CEH, or GIAC.

The position offers a competitive salary and equity options.
Employees receive outstanding medical and dental benefits, including 100% employer-paid options.
Company-paid life and disability insurance is provided, along with optional vision and supplemental insurance options.
An open paid time off policy is available, plus 12 weeks of paid leave for new parents.
A matching 401(k) plan is offered, with contributions of 5% up to $5,000 yearly.
Employees receive a monthly home working/digital lifestyle stipend, a new MacBook, and a one-time accessory reimbursement.
Access to a company-paid professional coaching service is included.
Remote employees have opportunities to visit the headquarters in Durham, North Carolina.