Security Engineer, Vulnerability Management

5 days ago

Denver, United States RingCentral, Inc Full time

Security Engineer, Vulnerability Management: (Belmont CA, Denver CO, Dallas TX)

RingCentral is the global leader in cloud-based communications and collaboration software. We are fundamentally changing the nature of human interaction-giving people the freedom to connect powerfully and personally from anywhere, at any time, on any device.


As part of the RingCentral CISO team, you'll help define and drive security discipline and standards required for complex, business-critical problems supported with elegant, user-friendly solutions that perform at massive scale. It's a once-in-a-career chance to get your hands on the latest-and-greatest technologies, and build the platform that's reshaping the way the world communicates.


About this role:
As a Security Engineer, Vulnerability Management at RingCentral, your primary responsibilities will be to perform vulnerability scans of our systems and networks, and monitor, triage and track remediation of vulnerabilities. In addition you'll be developing automation for these tasks. This role is a hybrid role, to be based at our Belmont CA, Denver CO, or Dallas TX offices.


Primary Duties:
Maintain Vulnerability Management process
Perform vulnerability scans using different tools/methods
Prioritize findings and assign them to system/service owners
Monitor for, triage and track remediation of vulnerabilities in our systems and networks
Conduct risk-based evaluation of policy exception requests
Develop automatization for all steps above
Develop visualization of current VM state
Participate in and assist with audits of information security program (FedRAMP, SOX, GDPR, SOC2, HITRUST)
Act as a member of the information security policy review committee

Additional Roles and Responsibilities:
Conduct routine log review of information security events, investigating and responding as necessary
Maintain and enhance monitoring capabilities to ensure the integrity of our systems and networks
Act as a member of the Incident Response Team, triaging, responding to and reporting incidents and associated metrics
Administer and maintain security products (phishing training, vulnerability management, web application firewall, SIEM, IDS, (h)IPS, EDR, etc)
Participate in on-call rotation
Maintain a comprehensive understanding of our information systems
Work closely with the multiple operation teams to implement and enforce our policy
Coordinate and participate in external assessments of our information security (risk assessment, penetration test, incident response tabletop)

Required Skills:
Experience operating vulnerability scanning tools (Qualys, Nessus, etc)
Familiarity with vulnerability management concepts, such as CVE and CVSS
Familiarity with hardening standards and benchmarks (CIS, STIG, etc)
Strong knowledge of endpoint and server operating systems (e.g. Windows, macOS, Linux) and relevant security risks, controls, and vulnerabilities
Strong knowledge of network and network security fundamentals
Familiarity with enterprise security tools (antivirus, firewalls, email monitoring, two-factor authentication, SIEM, IDS/IPS, etc.)
Familiarity with AWS environments and AWS security tools
Knowledge of and experience with compliance/remediation efforts of relevant domestic and international security standards and best practices such as FedRAMP, SOX, SOC2, NIST, GDPR and HIPAA
Familiarity with cloud computing environments and applications in a security context strongly preferred
Ability to quickly change priorities and handle simultaneous tasks
Excellent oral and written communications

Education / Pre-requisites:
3-5 years' experience in an information security field
US Citizenship required
BS degree in Computer Science, Cyber Security, Information Technology (or related discipline); Graduate degree in Information Assurance (or related discipline) or equivalent formal training and experience in Information Security
CISSP or GIAC certifications preferred

What we offer:
RingCentral offers all the work/life benefits you could ever want, (and none of the micromanagement.)
Comprehensive medical, dental, vision, disability, life insurance
Health Savings Account (HSA), Flexible Spending Account (FSAs) and Commuter Benefits
401K match and ESPP
Flexible PTO
Wellness programs including1:1 wellness coaching through TaskHuman and meditation guidance through Headspace
Paid parental leave and new parent gift boxes
Pet insurance
Employee Assistance Program (EAP) with counseling sessions available 24/7
Rocket Lawyer services that provide legal advice, document creation and estate planning
Employee bonus referral program

RingCentral's work culture is the backbone of our success. And don't just take our word for it: we are recognized as a Best Place to Work by Glassdoor, the Top Work Culture by Comparably and hold local BPTW awards in every major location. Bottom line: We are committed to hiring and retaining great people because we know you power our success.

About RingCentral:
RingCentral, Inc. (NYSE: RNG) is a leading provider of business cloud communications and contact center solutions based on its powerful Message Video Phone (MVP) global platform. More flexible and cost effective than legacy on-premises PBX and video conferencing systems that it replaces, RingCentral empowers modern mobile and distributed workforces to communicate, collaborate, and connect via any mode, any device, and any location.


RingCentral is headquartered in Belmont, California, and has offices around the world. If you are hired in Colorado, the compensation range for this position is between $100,000 and $130,000. If you are hired in Belmont, the compensation range for this position is between $120,000 and $150,000.


RingCentral is an equal opportunity employer that truly values diversity. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. We are committed to providing reasonable accommodations for individuals with disabilities during our application and interview process. If you require such accommodations, please click on the following link to learn more about how we can assist you.

  • Vulnerability Remediation Specialist

    Found in: beBee jobs US - 6 days ago

    Denver, Colorado, United States Bank of America Full time

    Job Description:At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.One of the keys to driving Responsible Growth is being a great place to work for our...

  • Vulnerability and Compliance Technical Leader

    Found in: beBee S US - 6 days ago

    Denver, United States Bank of America Full time

    Job Description:At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.One of the keys to driving Responsible Growth is being a great place to work for our...

  • Senior Security Engineer

    5 days ago

    Denver, United States New Wave Staffing Full time

    About the Company Join our dynamic and rapidly growing private wealth and asset management financial institution that places a premium on securing information assets and maintaining the highest standards of cybersecurity. About the Role The Information Security Engineer/Architect is a pivotal role in fortifying our security, and ensuring the confidentiality,...

  • Senior Security Engineer

    Found in: Appcast US C2 - 2 weeks ago

    Denver, United States New Wave Staffing Full time

    About the CompanyJoin our dynamic and rapidly growing private wealth and asset management financial institution that places a premium on securing information assets and maintaining the highest standards of cybersecurity.About the RoleThe Information Security Engineer/Architect is a pivotal role in fortifying our security, and ensuring the confidentiality,...

  • Senior Security Engineer

    Found in: Appcast Linkedin GBL C2 - 2 weeks ago

    Denver, United States New Wave Staffing Full time

    About the CompanyJoin our dynamic and rapidly growing private wealth and asset management financial institution that places a premium on securing information assets and maintaining the highest standards of cybersecurity.About the RoleThe Information Security Engineer/Architect is a pivotal role in fortifying our security, and ensuring the confidentiality,...

  • Security Solutions Engineer

    7 days ago

    Denver, United States CG Infinity Full time

    Job DescriptionJob DescriptionGet to Know Us:CG Infinity, Inc. is a software consulting firm that was founded in 1998. We offer solutions that are tailored to the needs of each individual client that we work with instead of offering standard, run-of-the-mill solutions to everyone. We work closely with our clients throughout the entire process and offer...

  • Security Solutions Engineer

    6 days ago

    Denver, United States CG Infinity Full time

    Job DescriptionJob DescriptionGet to Know Us:CG Infinity, Inc. is a software consulting firm that was founded in 1998. We offer solutions that are tailored to the needs of each individual client that we work with instead of offering standard, run-of-the-mill solutions to everyone. We work closely with our clients throughout the entire process and offer...

  • Security Application Engineer

    4 days ago

    Denver, United States CareerBuilder Full time

    Security Application Engineer, DAST Scanning (Belmont CA, Denver CO, Dallas TX) The RingCentral environment is dynamic, success-driven, team-oriented and committed to providing world class service for its customers. Do you have the ability to thrive in a fast-paced environment? We are looking for candidates with an entrepreneurial spark! We're not a phone...

  • Development Security Operations Engineer – Remote

    Found in: Talent US C2 - 6 days ago

    Denver, United States Presidio Full time

    Presidio is hiring Remote DevSecOps Engineers (Contract)Responsibilities: Embed security practices seamlessly into the DevOps workflow.Implement and manage security tools, automation, and processes.Establish and maintain continuous security monitoring of systems and applications.Respond to and mitigate security incidents.Develop and maintain automation...

  • Information Security Manager

    Found in: Resume Library US A2 - 5 days ago

    Denver, Colorado, United States SquareTrade Full time

    Job Description We are looking for a talented, energetic Information Security Manager to join our security operations team. This person will be responsible for leading the security team in its planning, implementation, and operationalization of security controls to safeguard SquareTrade network, systems, and data.  They will work closely with various teams...

  • Security Control Assessor with Security Clearance

    Found in: Dice One Red US C2 - 6 days ago

    Denver, United States CALIBRE Systems Inc. Full time

    CALIBRE Systems Inc., an employee-owned Management Consulting and Digital Transformation Company is seeking a Security Control Assessor (Mid-level) who will conduct independent comprehensive assessments of the management, operational, and technical security controls and control enhancements employed within or inherited by an information technology (IT)...

  • Security Engineer IV

    Found in: beBee jobs US - 6 days ago

    Greater Denver Area, United States Spectrum Full time

    ** This position is eligible to work in a hybrid work model (combination of in-office and remote days). **JOB SCOPEResponsible for leading the security engineering activities that monitor, detect and alert on potential security threats and vulnerabilities to the company's telecommunications and signal processing hardware, software and electrical systems....

  • Supervisory Transportation Security Inspector

    Found in: Talent US 2 C2 - 6 days ago

    Denver, United States Transportation Security Administration Full time

    Summary Securing Travel, Protecting People - At the Transportation Security Administration, you will serve in a high-stakes environment to safeguard the American way of life. In cities across the country, you would secure airports, seaports, railroads, highways, and/or public transit systems, thus protecting America's transportation infrastructure...

  • Systems Engineer with Security Clearance

    Found in: Dice One Red US C2 - 2 weeks ago

    Denver, United States National Security Agency (NSA) Full time

    Employer: National Security AgencyJob Title: Systems Engineer - Entry to Expert Level (CO, MD, TX, UT)Job ID: 1226629Close Date: 5/31/2024 ResponsibilitiesWith ever-accelerating technological advances and growing system complexity, a diverse and inclusive professional workforce of Systems Engineers builds, integrates, and optimizes complex systems and...

  • Network Security

    60 minutes ago

    Denver, United States Diverse Lynx Full time

    Job Title: Network Security & Firewall Engineer Location: Denver, CO (Onsite) Type : Full Time Employment Job Description: Responsibilities (1) Document, recommend and implement migration options for a complex enterprise with consideration of evolution from distributed data center environment towards converged environment while leveraging VMWare NSX...

  • Security Engineer

    6 days ago

    Denver, United States Marriott Full time

    **Job Number** 24008671 **Job Category** Information Technology **Location** Marriott International HQ, 7750 Wisconsin Avenue, Bethesda, Maryland, United States **Schedule** Full-Time **Located Remotely?** Y **Relocation?** N **Position Type** Management **JOB SUMMARY** Serves as a Security Orchestration and Automated Response (SOAR) engineer responsible for...

  • Senior Information Security Specialist

    6 days ago

    Denver, United States Arrow Alliance Industries, LLC Full time

    Job Title:SENIOR INFORMATION SECURITY SPECIALISTCompany: Arrow Alliance Industries, LLC (Norman, OK)Location(s):Washington, DC or Lakewood, CO Job Description: The contractor shall bring extensive knowledge and experience in delivering security administration support to the data center which includes incident reporting, planning, standards compliance,...

  • Senior Adaptive Threat Replication Engineer

    6 days ago

    Denver, United States Hispanic Technology Executive Council Full time

    Senior Adaptive Threat Replication Engineer(AKA Red Team, Penetration Testing, Advanced Vulnerability Assessments Engineer)Are you passionate about cyber security and looking to work with some of the best information security professionals in the world and in challenging environments? Bank of America is hiring top talent to join our team. You bring your...

  • Cybersecurity Engineer

    Found in: Resume Library US A2 - 2 weeks ago

    Denver, Colorado, United States ClientSolv Technologies Full time

    Job Description We are seeking an experienced and certified Cybersecurity Engineer (can be certified in any of the following: CISSP, CISM,CISA, or CRIS) for a 6-month contract-to-hire role.  This role can work remotely from anywhere within the U.S.  In this role, you will apply Information Technology (IT) security principles, methods and security...

  • Cloud Remediation Lead

    Found in: beBee S US - 6 days ago

    Denver, United States Bank of America Full time

    Job Description:At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.One of the keys to driving Responsible Growth is being a great place to work for our...