We’re looking for an Information Security Engineer to join our core security team helping deliver on security initiatives, audits & compliance, and infrastructure security & integrity.

Core Responsibilities

Security Operations & Implementation

• Evaluate, test, deploy and maintain security software and tools
• Develop, execute, and track the performance of security measures to protect information, network infrastructure, and computer systems
• Perform and document cybersecurity, vulnerability, and risk assessments and implement remediation plans
• Research security vulnerabilities and implement countermeasures

Strategy & Planning

• Gather, analyze, and document security requirements for systems and applications
• Assist with developing security standards and best practices for the organization

• Recommend security solutions to management
• Develop cost-effective solutions to cybersecurity challenges

Governance & Compliance

• Create comprehensive security reports and analysis for stakeholders
• Assist with internal compliance activities such as maintaining security certifications, driving access reviews, disaster recovery testing, pen test.
• Assist with external compliance requests such as responding to security questionnaires, responding to security RFPs.

Training & Communication

• Educate and train staff in information security best practices
• Communicate security requirements and recommendations across the organization
• Collaborate with external security vendors to deliver projects, resolve issues, negotiate on requirements.

Minimum Experience / Qualifications

• Bachelor’s Degree in Information Security, Computer Science, or related field.
• 1-3 years of experience in areas of cybersecurity or related field.
• Experience with cybersecurity frameworks (SOC 2, ISO 27001, NIST, GDPR).

Preferred Experience / Qualifications

• 5+ years of experience in areas of cybersecurity or related field.
• Professional certification such as CISSP, CISM, or CISA.
• Expertise in application security, including secure SDLC, SAST/DAST, and code review
• Expertise in network security, cryptography, and identity management
• Excellent understanding of technology infrastructures using Firewalls, VPN, Data Loss Prevention, and IDS/IPS
• Proficiency in at least one programming or scripting language (Python, Bash, Java, etc.)
• Ability to plan and deliver multi-week projects, including reporting status and reacting to changes of requirements.
• Experience in SaaS, Telecom, or in a regulated industry.

Desired Skills, Competencies and Characteristics

• Passion: Strong internal motivation to deliver and develop in area of cybersecurity.
• Attention to Detail: Ability to consistently execute tasks with accuracy and thoroughness.
• Analytical Thinking: Capacity to evaluate complex scenarios and identify effective solutions.
• Collaboration: Ability to effectively partner and communicate across teams and departments.
• Adaptability: Flexibility to adjust quickly to changing priorities and evolving threats.
• Integrity: Unwavering commitment to ethical conduct, confidentiality, and reliability.
• Flexibility: Ability to accommodate occasional out of hours work to hit customer deadlines or respond to security incidents.