Remote Senior Information Security Engineer

Posted

This job is closed

This job post is closed and the position is probably filled. Please do not apply.  Automatically closed by a robot after apply link was detected as broken.

Description:

  • We are searching for an experienced information-security engineer to protect the confidentiality and security of our IT systems and data.
  • Ideal candidates have both IT and security experience at companies that make extensive use of SaaS tools among a remote and dispersed workforce.
  • In this role, you will have the opportunity to work with a high-performing team and use modern security tools to support the company.
  • You will own endpoint and infrastructure security, including MFA, endpoint protection, patching, secure configurations, phishing protection, and least-privilege permissions.
  • You will act as the main point of contact for our Managed Detection & Response/Outsourced SOC vendor.
  • You will manage security tools including SIEM, EDR, phishing-awareness/training, vulnerability management, secure enterprise browser, and password management.
  • You will triage and resolve/re-assign incoming alerts from security systems.
  • You will work with system owners to remediate patching and configuration vulnerabilities, configure SAML (or other MFA) and SCIM provisioning, rotate credentials for non-SAML accounts, and configure and test backup systems.
  • You will deploy tools/policies to ensure secure access of company systems by non-employees.
  • You will provide security input to the IT team and other departments for relevant projects.
  • You will work with compliance teams and auditors to meet requirements and provide evidence.
  • You will participate in security tabletop exercises and respond to security incidents.
  • You will prepare relevant security documentation.

Requirements:

  • You must have 6+ years of professional Information Technology experience, including 3+ years of information security experience.
  • You should have PCI and SOX compliance expertise.
  • You must have the ability to prioritize and manage multiple projects, execute tasks, and demonstrate accountability to deliver results and meet deadlines.
  • You should possess exceptional attention to detail and respect for change management procedures.
  • You must have a team player mindset with an ability to work collaboratively and communicate information clearly at all levels of the organization.
  • You should have experience working in a fast-paced, entrepreneurial organization.
  • You must have admin experience with endpoint security tools like Crowdstrike, SentinelOne, etc.
  • You should have experience with email security tools like Proofpoint, Mimecast, Defender, or Abnormal.
  • You must have experience with Windows and MacOS patching tools like Automox, NinjaOne, or ManageEngine.
  • You should have experience with password management tools like LastPass, 1Password, CyberArk, or BeyondTrust.
  • You must have experience with phishing/security-awareness training tools like KnowBe4.
  • You should have Windows, MacOS, and/or Linux system admin experience.
  • You must have experience with firewalls, VPNs, and network intrusion detection.
  • You should have experience with Microsoft 365 security.
  • You must have experience with MDM tools like Jamf and Intune.
  • You should have experience with centralized log/SIEM deployment and configuration.
  • Bonus experience includes Okta SSO, SCIM, and Device Trust, CCPA and GDPR data privacy, logging configuration and analysis, network infrastructure like Meraki, Aruba, or Palo Alto, and scripting experience in PowerShell, Bash, Python, JavaScript, or other languages.
  • Experience with SSL/TLS certificate management is also a bonus.

Benefits:

  • We offer career growth opportunities through regular 1-1’s with your manager, a variety of training opportunities, and an annual 360 review process for all employees.
  • You will be part of a diverse, mission-minded team focused on cultivating a more transparent, sustainable, compassionate, and inclusive jewelry industry.
  • We provide continued education with company-sponsored learning in leadership, professional skills, diversity & inclusion, and access to tuition reimbursement for role-specific trainings.
  • As an employee, you will receive a generous discount on our jewelry.
  • We offer wellness benefits, including access to exclusive discounts on gym memberships and an Employee Assistance Program for 24/7 access to counseling.
  • You will have opportunities to give back and participate in volunteer initiatives.
  • Medical, dental, and vision insurance will kick in on the first day of your 2nd month.
  • We offer a generous 401k match to help you save for the future.
  • You will accrue 3 weeks of paid time off (PTO) in your first year.
  • We provide 100% employer-paid disability and life insurance.
  • Pre-tax commuter benefits are also available.
About the job
Posted on
Job type
Full-time
Salary
-
Location requirements

-

Position
Cybersecurity Engineer
Experience level
Senior
Technology stack
JavaScript Software as a Service E-commerce Python Bash PowerShell
BE
Brilliant Earth's company logo
Brilliant Earth
View company profile Visit brilliantearth.com
Leave a feedback