Summary
The job is for a Security Engineer role at EngFlow, a remote SaaS company that speeds up software builds and tests. The role involves ensuring security and SOC 2 compliance, collaborating with stakeholders, and managing pentest processes. The team enjoys team events and meetings at exciting destinations.
Requirements
- Passion for optimization and analyzing complex challenges in the security engineering space
- Advanced knowledge of supply chain and cloud security
- Experience managing pentest processes with external vendors
- Experience with SOC2 / FedRAMP audits
- Skilled at intrusion detection and prevention practices
- Expertise in vulnerability tracking and management
- Familiarity with at least one build system: Bazel, CMake, Maven, Gradle, Nix, Buck, others
- Experience in or passion for DevOps and DevInfra
- Experience in Linux and the Unix shell
- Experience with at least one Cloud infrastructure: AWS, Azure, GCP, OpenShift, Oracle Cloud. Terraform experience is a plus
- Previous experience owning and updating an ISMS and other security documentation / resources
Responsibilities
- Ensure our systems are secure and SOC 2 compliant
- Collaborate with numerous stakeholders across business and tech functions to understand security requirements
- Work through security questions, questionnaires, and reviews with prospects and customers
Benefits
- Comprehensive medical, dental, vision benefits
- 401k bonus
- Parental leave and generous vacation
- Team events and meetings at exciting destinations throughout the year
