Senior Security Engineer

3 weeks ago

New York, United States Ivalua Full time
Senior Security Engineer (Cloud and Infrastructure Security) - New York, NYC

About Ivalua

A "Magic Quadrant" leader, Ivalua's solutions work in a complex global economy. Our innovative Source-to-Pay solutions include automating customized workflows to source, contract, request, procure, receive, and pay for goods and services across the enterprise, refining the procurement lifecycle while reducing cost and risk of spending on indirect goods, direct goods and services, and improving supplier collaboration.

All companies want the best and brightest. At Ivalua, we also want team members who have a global point of view and who bring customer-focused enthusiasm and ambition to the table. We are a company of doers, of problem solvers, of figure-it-outers. We have fun and we work hard. This is a truly global company with a diverse team of contributors and a set of core values that people can feel every day across all our offices.

About the Team

Our team is very hands-on with a strong mindset of problem solving while also having the ability to think of the implementation holistically and provide solutions that solve the customer's long-term challenges. Our team works hard, plays hard and enjoys all indoor and outdoor activities that the company organizes from time to time, so that you can focus, work collaboratively, and be at your creative best.

Opportunity Statement

This full-time position requires the candidate to be physically in the office 3 days a week (on a hybrid schedule).

As a Senior Security Engineer, you will work with InfoSec, IT and R&D teams to keep our enterprise-class SaaS service secure from a variety of threats. You will engineer, implement, review and monitor technical security controls to protect and enhance the security of our hosting infrastructure, networks and applications. You will also help with operational security aspects which will include performing security reviews on infrastructure changes, reviewing firewalls rules, analyzing results from vulnerability or penetrationtesting reports, investigating security events by analyzing logs and identifying actionable plans to address in the infrastructure.

Responsibilities:
  • Identify, implement and lead the technical security projects to mitigate the risks on our hosting and corporate infrastructure (such as the review of encryption systems and key management, the hardening of servers, the hardening of Active Directory etc.)
  • Perform security and privacy design, architecture and/or configuration reviews on our hosting and corporate infrastructure and systems including Azure cloud environments, network devices, endpoints and security technologies deployed (SIEM, MDM, VPN, WAF, DDoS, NAC 802.1x etc.)
  • Review/maintain and lead the vulnerability management program including performing infrastructure vulnerability scanning, internal and third-party penetration testing, reviewing and validating ad-hoc reported security vulnerabilities.
  • Collaborate with the SOC team to improve our security investigation processes and capabilities.
  • Build a threat intelligence program by developing threat intelligence tooling and capabilities to protect our brand, monitor our external attack surface and detect potential data leakage.
  • Collaborate with IT operations, engineering and development teams to manage, monitor, track and remediate security incidents and provide a thorough post-event analysis.
  • Provide support for the technical security and privacy controls related to compliance initiatives such as FedRAMP, PCI, NIST 800-53 r5, IRAP, SANS CIS 20 and other commercial compliance efforts as necessary.
  • Assist customer and prospect facing teams with technical security questions related to the Ivalua hosting infrastructure and platform security.
  • Act as the SME on infrastructure security, expand and develop sharing of technical knowledge and collaborate with multiple internal teams to review and improve the technical architecture and efficiency of IT and security operational processes.
Skills Required:
  • 7+ years of experience on infrastructure and network security engineering/architecture, protocols and tools
  • 5+ years hands-on experience in deploying security technologies like DLP, Database Activity Monitoring, MDM, NAC 802.1x, CASB, Azure cloud environments etc.
  • 4+ years of experience in assessing Infrastructure (required) and Web Application (optional) vulnerabilities.
  • Experience with scripting (such as Python, PowerShell etc.)
  • Knowledge of Active Directory (key concepts, protocols, services, main attacks, best practices for hardening etc.)
  • Knowledge of Cryptography concepts, encryption algorithms, protocols, keys and certificates management
  • Experience with security concepts on Azure cloud environments and resources.
  • Experience with security aspects of operating SaaS environments.
  • Experience with security incident response and investigation.
  • Experience with threat intelligence operations and tooling.
  • Ability to foster collaborative, open and working relationships with technology and other stakeholders.
  • Experience with security standards and compliance programs such as, NIST, FedRAMP, PCI, SANS CIS 20.
  • An Information Security qualification or evidence of starting to work towards e.g CISSP, OSCP, AZ-500, GIAC GPEN or similar certification.
  • Ability to handle multiple tasks, prioritize and meet deadlines.
  • Prior experience in financial services, government or any other highly regulated sector is a plus.
Preferred Education:
  • Bachelor's degree in computer science or equivalent.

Ivalua's core values include a priority on Care & Grow People. We take matters like pay equity very seriously and strive to reward our employees appropriately and fairly for their talents.

The compensation range for this position reflects the cost of labor across our US locations and is based upon careful and continual market research. In addition to location, compensation may also vary based upon job-related knowledge, skills, and experience.

Title: Senior Security Engineer

Range minimum: USD 112000

Range maximum: USD 208000

Additional compensation / rewards: Ivalua also offers exceptional benefits including medical, dental, vision and transportation.

Check out our video and find out Who We are ?

Join Ivalua today and procure a great future for your career

#HYBRID #LI-OB1

  • Senior Security Engineer

    1 month ago

    New York, United States Glocomms Full time

    Glocomms is partnered with an industry-leading media platform seeking to bring on a talented and experienced Senior Security Engineer to join its growing Payments technology team. The ideal candidate will have a Bachelor's or Master's degree in Computer Science, Information Security, or a related field, along with 5-7 years of proven experience in a security...

  • Senior Security Engineer

    2 weeks ago

    New York, United States Velocity Tech Full time

    Senior Security EngineerAbout Us: We are a fast-growing crypto trading app startup committed to providing a secure trading experience. We seek an experienced Senior Security Engineer to enhance our platform's security.Key Responsibilities:Design, implement, and maintain security protocols and infrastructure.Conduct penetration testing and vulnerability...

  • Senior Security Engineer

    1 day ago

    New York, United States Velocity Tech Full time

    Senior Security EngineerAbout Us: We are a fast-growing crypto trading app startup committed to providing a secure trading experience. We seek an experienced Senior Security Engineer to enhance our platform's security.Key Responsibilities:Design, implement, and maintain security protocols and infrastructure.Conduct penetration testing and vulnerability...

  • Senior Solutions Engineer

    3 weeks ago

    New York, United States Transmit Security Full time

    Transmit Security gives businesses the modern tools they need to build secure, trusted and end-to-end digital identity journeys to innovate and grow. CX-focused, cybersecurity conscious leaders rely on Transmit Security’s xCIAM platform to provide their customers with smooth experiences protected from fraud across all channels and devices. Transmit...

  • Senior Security Engineer

    4 weeks ago

    New York, United States MDS (Micro-Data Systems) Full time

    Senior Security EngineerLocation: Hybrid - 2-3 Days per week Onsite in Brooklyn, NYTop skills/tools, etc. that are MUST haves:Core security with experience deploying / upgrading and migrating Palo Alto firewallsConsultative and team playerHigh level of experience with Panorama and log collectorsPalo Alto Next Generation FirewallsDetailed technical experience...

  • Senior Security Engineer

    1 month ago

    New York, United States MDS (Micro-Data Systems) Full time

    Senior Security Engineer This is a hybrid requisition in Irving, TX. Ideally, the resource will work 3x/week on-site, however, we are flexible if candidates express at least some interest/willingness to work on-site. (3x/week biweekly or monthly could work as well.) We are looking for NGFW candidates with experience supporting enterprise clients, with...

  • Senior Security Engineer

    2 months ago

    New York, United States MDS (Micro-Data Systems) Full time

    Senior Security EngineerLocation: Hybrid - 2-3 Days per week Onsite in Brooklyn, NYTop skills/tools, etc. that are MUST haves:Core security with experience deploying / upgrading and migrating Palo Alto firewallsConsultative and team playerHigh level of experience with Panorama and log collectorsPalo Alto Next Generation FirewallsDetailed technical experience...

  • Senior Security Engineer

    7 hours ago

    New York, United States MDS (Micro-Data Systems) Full time

    Senior Security EngineerLocation: Hybrid - 2-3 Days per week Onsite in Brooklyn, NYTop skills/tools, etc. that are MUST haves:Core security with experience deploying / upgrading and migrating Palo Alto firewallsConsultative and team playerHigh level of experience with Panorama and log collectorsPalo Alto Next Generation FirewallsDetailed technical experience...

  • Senior Security Engineer

    4 weeks ago

    New York, United States COGENT Infotech Full time

    Cogent Infotech is seeking a senior security engineer on behalf of our client, an innovative technology company in NYC. This is a 1-year contract that can be extended for multiple years or be converted into a permanent position. This position requires the successful candidate to work on-site in Brooklyn 5-days per week. Qualified candidates are encouraged to...

  • Senior Security Engineer

    3 weeks ago

    New York, United States COGENT Infotech Full time

    Cogent Infotech is seeking a senior security engineer on behalf of our client, an innovative technology company in NYC. This is a 1-year contract that can be extended for multiple years or be converted into a permanent position. This position requires the successful candidate to work on-site in Brooklyn 5-days per week. Qualified candidates are encouraged to...

  • Senior Security Engineer

    4 weeks ago

    New York, United States COGENT Infotech Full time

    Cogent Infotech is seeking a senior security engineer on behalf of our client, an innovative technology company in NYC. This is a 1-year contract that can be extended for multiple years or be converted into a permanent position. This position requires the successful candidate to work on-site in Brooklyn 5-days per week. Qualified candidates are encouraged to...

  • Senior Development Security Engineer

    2 weeks ago

    New York, United States Motion Recruitment Full time

    A SaaS company offering a marketing platform is looking to onboard a Senior Development Security Engineer. This engineer would be embedded in their development teams producing secure production code written in Golang. This is a great opportunity to join a smaller security group and be part of conversations involving building out security...

  • Senior Development Security Engineer

    1 day ago

    New York, United States Motion Recruitment Full time

    A SaaS company offering a marketing platform is looking to onboard a Senior Development Security Engineer. This engineer would be embedded in their development teams producing secure production code written in Golang. This is a great opportunity to join a smaller security group and be part of conversations involving building out security...

  • Senior Security Engineer

    1 month ago

    New York, United States MicroData Systems, Inc. Full time

    Job DescriptionJob DescriptionSenior Security EngineerLocation: Hybrid - 2-3 Days per week Onsite in Brooklyn, NYTop skills/tools, etc. that are MUST haves:Core security with experience deploying / upgrading and migrating Palo Alto firewallsConsultative and team playerHigh level of experience with Panorama and log collectorsPalo Alto Next Generation...

  • Senior Security Engineer

    8 hours ago

    New York, United States MicroData Systems, Inc. Full time

    Job DescriptionJob DescriptionSenior Security EngineerLocation: Hybrid - 2-3 Days per week Onsite in Brooklyn, NYTop skills/tools, etc. that are MUST haves:Core security with experience deploying / upgrading and migrating Palo Alto firewallsConsultative and team playerHigh level of experience with Panorama and log collectorsPalo Alto Next Generation...

  • Senior Development Security Engineer

    2 weeks ago

    New York, United States Motion Recruitment Partners, LLC Full time

    A SaaS company offering a marketing platform is looking to onboard a Senior Development Security Engineer. This engineer would be embedded in their development teams producing secure production code written in Golang. This is a great opportunity to join a smaller security group and be part of conversations involving building out security processes. ...

  • Senior Security Engineer

    1 month ago

    New York, United States The Phoenix Group Full time

    As the Senior Security Engineer/Manager, you will lead efforts to safeguard client infrastructure and application development, collaborating closely with the CISO. Your role involves guiding a team of information security engineers to identify and address risks, respond to incidents, and enhance overall security measures for both physical and virtual assets....

  • Senior Security Engineer

    1 month ago

    New York, United States The Phoenix Group Full time

    As the Senior Security Engineer/Manager, you will lead efforts to safeguard client infrastructure and application development, collaborating closely with the CISO. Your role involves guiding a team of information security engineers to identify and address risks, respond to incidents, and enhance overall security measures for both physical and virtual assets....

  • Senior Security Engineer, Application Security

    1 month ago

    New York, New York, United States Grow Therapy Full time

    What You'll Be Doing:We are looking for a Senior Security Engineer to help us establish the Application Security vertical of Grow Therapy, and who will help build a secure product platform for Grow. You'll be the first hire in this area, and will report directly to our Head of Security Your responsibilities will include: Identify and implement improvements...

  • Senior Security Content Engineer

    4 weeks ago

    New York, United States BlueVoyant Full time

    Job DescriptionJob DescriptionSenior Security Content Engineer Senior Security Content Engineer needed in New York, NY to assist our global customers manage their deployments and Azure cloud security solutions. Derive security insights through generating detection logic, automation and visualizations.Ideate and create client-facing detections to surface...