Senior Security Engineer - Mezmo San Francisco, California, United States Bookmark Share Print 104 0 1

Listing Description

About the role 


As a member of the Security and Compliance team, you’ll be responsible for maintaining (and raising) the security bar across our production cloud environments. We are looking for motivated, passionate experts in cloud security architecture and operations who can help us maintain highly defensible cloud infrastructure, and follow Security best practices to reduce toil for our team and our internal customers.


Our ideal candidate wakes up each morning thinking about ways to scale security. Their goal is to lower risk while letting the business move quickly and safely. This position is responsible for keeping the cloud security posture current, monitoring and defending Mezmo’s technologies and assets against potential threats that can jeopardize the financial growth and security goals of the Company.


RESPONSIBILITIES: 



  • Leads and runs complex security related projects and resolves security related issues

  • Provides support by proposing solutions, coordinating implementation, and enforcing information systems security policies, standards, and methodologies

  • Evaluate and respond to alerts and events from the security tools, including tuning of tool configuration to minimize false positives, development of event response documentation and processes to follow for event actions, and escalating to appropriate teams for event response

  • Lead the Incident Response process on security incidents 

  • Work closely with engineering, and other teams throughout the company to ensure adequate security solutions and controls are in place throughout.

  • Takes end-to-end ownership of all security tools and metrics, driving risk down actively across the company

  • Lead and support the vulnerability management process

  • Develop and maintain documentation and diagrams for security tools, system environments, and cloud operations



  • Serves as cyber security technical subject matter expert, coaches and educates others to increase early detection rates and decrease IT risk and security


SUPERVISORY RESPONSIBILITIES


This position has no supervisory responsibility but may mentor and train other engineers.


MUST-HAVE REQUIREMENTS:



  • Minimum 5 years of senior level experience working as a security operations engineer with emphasis on application security, infrastructure security, cloud security operations.

  • Minimum 5 years of experience in Cloud Security (AWS).

  • Experience in cyber security roles requiring knowledge of responding to security threats (e.g., analysis, assessment, attack prevention, cyber security, testing, and system security).

  • Experience in developing and leading the incident management.

  • Experience administering security tools to address threats and lower risk: vulnerability scanners, web application firewalls, IDS/IPS, endpoint security monitoring, etc.

  • Experience with modern cloud technology components and deployment patterns: Containers and Kubernetes

  • Experience with tools like Burp Suite, OWASP Zap, SAST, DAST, and SCA tools as well as other various commercial offerings for application security testing and analysis.

  • Understand DevSecOps cultural mindsets, and an engineering focused approach to solving complex security problems 


NICE-TO-HAVES



  • Contributions to the security community, such as open source tools, research papers, conference talks, etc.

  • Proficiency in one or more scripting languages such as Python, including JSON

  • Nice to have experience in industry compliance frameworks such as PCI-DSS, HIPAA, NIST, ISO, GDPR, SOC2, etc.


SKILLS / OTHER PERSONAL ATTRIBUTES REQUIRED 



  • Team Player: Works well as a member of a group

  • Functional Expert: Considered a thought leader on a subject

  • Detail Oriented: Capable of carrying out a given task with all details necessary to get the task done well

  • Ability to multitask and prioritize.

  • Good communication skills both verbal and written.

  • Good ability to diagnose and solve problems while maintaining professionalism and courtesy.

  • Open minded, flexible, and willing to listen for other people's opinions.

  • Adapts to changing demands and conditions

  • Willing to keep up to date and build upon skill and knowledge base.


CERTIFICATES, LICENSES, REGISTRATIONS



  • Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP), or Certified Cloud Security Knowledge (CCSK) certifications are a plus - preferred


About Mezmo


Mezmo is on a mission to empower people who build solutions that shape the world. We’re doing this by delivering a platform that enables enterprises to get more value from their observability data in real time, regardless of source, destination, use case, or scale. We’re not the only ones working on this problem but we have a few things the others don’t.



  1. We’re cloud-native and know how to make the most of modern technology like Kubernetes.

  2. We have scaled a solution from zero to petabyte scale in a short amount of time, while supporting thousands of active users across multiple environments.

  3. We are hungry for change and are surrounded by enterprises telling us they’re hungry, too.

  4. We have a kick-ass group of people who are thinking about the problem analytically and are excited to change the observability world for the better.


Mezmo has helped some of the world’s most innovative companies transform how they manage their systems and applications. Still, we know that we can help them get more value from their observability data by providing more flexibility and control over how they use it. This will enable teams to spend less time switching between data silos so they can focus on shipping better, more resilient, and secure products.


We have momentum on our side. Last year we saw triple digit revenue growth and added 800 new customers to our roster. Recent accolades include being named to YC’s Top Companies, CRN’s 10 Hottest DevOps Startups, and EMA’s Top 3 Observability Platforms.


What it’s like to work at Mezmo 


At Mezmo, our culture is everything. We have an inclusive, collaborative, and fulfilling work environment so that our teammates can tackle some of technology’s biggest challenges. We hold the prestigious Great Place to Work badge and have won the Fortune Best Small and Medium Workplace award for the last two years in a row. Join us if you:



  • Want to solve hard problems.

  • Want to enable Mezmo's customers, partners, and community to be highly productive and successful.

  • Thrive in collaborative, cross-functional environments. 

  • Enjoy jumping in where needed to help the whole company succeed. 

  • Take your role, but not yourself, seriously. At Mezmo, we know that pride, humility, and kindness are not mutually exclusive.


Benefits



  • Receive competitive compensation.

  • Receive competitive benefits, including:


    • 100% healthcare coverage for you and your family.

    • 100% dental coverage for you and your family.

    • 100% vision coverage for you and your family.

    • Flexible time off. Work-life balance is valued here and we encourage you to take the opportunity to recharge.

    • One company-wide mental health day off per month in addition to all nationally recognized holidays.

    • $600 annual remote work expense reimbursement in addition to hardware setup provided by the company.



This is a full-time remote opportunity. Mezmo is a remote-first company that was born in the San Francisco Bay Area and now has employees in 71 cities in North America and 8 countries worldwide. Learn more about our culture and how we stay connected on our website.


 


Listing Details

  • Citizenship: Not Provided
  • Incentives: Not Provided

 

  • Education: Not Provided
  • Travel: Not Provided
  • Telework: Not Provided



About Us

NinjaJobs is a community-run job platform developed by information security professionals. Our unique approach of focusing strictly on cybersecurity positions allows us to personalize the user experience.

Our Contacts

1765 Greensboro Station Pl.
Suite 900
Tysons Corner Va 22102

(703) 594-7765