Senior Security Engineer (Cloud and Infrastructure Security)

Full Time
Pittsburgh, PA, USA
8 months ago

Senior Security Engineer (Cloud and Infrastructure Security) - Pitsburgh,PA

About Ivalua

A “Magic Quadrant” leader, Ivalua’s solutions work in a complex global economy.  Our innovative Source-to-Pay solutions include automating customized workflows to source, contract, request, procure, receive, and pay for goods and services across the enterprise, refining the procurement lifecycle while reducing cost and risk of spending on indirect goods, direct goods and services, and improving supplier collaboration.

All companies want the best and brightest. At Ivalua, we also want team members who have a global point of view and who bring customer-focused enthusiasm and ambition to the table. We are a company of doers, of problem solvers, of figure-it-outers. We have fun and we work hard. This is a truly global company with a diverse team of contributors and a set of core values that people can feel every day across all our offices.

About the Team

Our team is very hands-on with a strong mindset of problem solving while also having the ability to think of the implementation holistically and provide solutions that solve the customer’s long-term challenges. Our team works hard, plays hard and enjoys all indoor and outdoor activities that the company organizes from time to time, so that you can focus, work collaboratively, and be at your creative best. 

Opportunity Statement

This full-time position requires the candidate to be physically in the office 3 days a week (on a hybrid schedule).

As a Senior Security Engineer, you will work with InfoSec, IT and R&D teams to keep our enterprise-class SaaS service secure from a variety of threats. You will engineer, implement, review and monitor technical security controls to protect and enhance the security of our hosting infrastructure, networks and applications. You will also help with operational security aspects which will include performing security reviews on infrastructure changes, reviewing firewalls rules, analyzing results from vulnerability or penetrationtesting reports, investigating security events by analyzing logs and identifying actionable plans to address in the infrastructure.

Responsibilities:

  • Identify, implement and lead the technical security projects to mitigate the risks on our hosting and corporate infrastructure (such as the review of encryption systems and key management, the hardening of servers, the hardening of Active Directory etc.)
  • Perform security design, architecture and/or configuration reviews on our hosting and corporate infrastructure and systems including Azure cloud environments, network devices, endpoints and security technologies deployed (SIEM, MDM, VPN, WAF, DDoS, NAC 802.1x etc.)
  • Review/maintain and lead the vulnerability management program including performing infrastructure vulnerability scanning, internal and third-party penetration testing, reviewing and validating ad-hoc reported security vulnerabilities.
  • Collaborate with the SOC team to improve our security investigation processes and capabilities.
  • Build a threat intelligence program by developing threat intelligence tooling and capabilities to protect our brand, monitor our external attack surface and detect potential data leakage.
  • Collaborate with IT operations, engineering and development teams to manage, monitor, track and remediate security incidents and provide a thorough post-event analysis.
  • Provide support for the technical security controls related to compliance initiatives such as FedRAMP, PCI, NIST 800-53 r5, IRAP, SANS CIS 20 and other commercial compliance efforts as necessary.
  • Assist customer and prospect facing teams with technical security questions related to the Ivalua hosting infrastructure and platform security.
  • Act as the SME on infrastructure security, expand and develop sharing of technical knowledge and collaborate with multiple internal teams to review and improve the technical architecture and efficiency of IT and security operational processes.

 

Skills Required:

  • 7+ years of experience on infrastructure and network security engineering/architecture, protocols and tools 
  • 5+ years hands-on experience in deploying security technologies like DLP, Database Activity Monitoring, MDM, NAC 802.1x, CASB, Azure cloud environments etc.
  • 4+ years of experience in assessing Infrastructure (required) and Web Application (optional) vulnerabilities.
  • Experience with scripting (such as Python, PowerShell etc.)
  • Knowledge of Active Directory (key concepts, protocols, services, main attacks, best practices for hardening etc.)
  • Knowledge of Cryptography concepts, encryption algorithms, protocols, keys and certificates management
  • Experience with security concepts on Azure cloud environments and resources.
  • Experience with security aspects of operating SaaS environments.
  • Experience with security incident response and investigation.
  • Experience with threat intelligence operations and tooling.
  • Ability to foster collaborative, open and working relationships with technology and other stakeholders.
  • Experience with security standards and compliance programs such as, NIST, FedRAMP, PCI, SANS CIS 20.
  • An Information Security qualification or evidence of starting to work towards e.g CISSP, OSCP, AZ-500, GIAC GPEN or similar certification.
  • Ability to handle multiple tasks, prioritize and meet deadlines.
  • Prior experience in financial services, government or any other highly regulated sector is a plus.

Preferred Education:

  • Bachelor’s degree in computer science or equivalent.

Ivalua’s core values include a priority on Care & Grow People. We take matters like pay equity very seriously and strive to reward our employees appropriately and fairly for their talents.

The compensation range for this position reflects the cost of labor across our US locations and is based upon careful and continual market research. In addition to location, compensation may also vary based upon job-related knowledge, skills, and experience.

Title: Senior Security Engineer

Range minimum: USD 112000

Range maximum: USD 208000

Additional compensation / rewards: Ivalua also offers exceptional benefits including medical, dental, vision and transportation.

Check out our video and find out Who We are ?

Join Ivalua today and procure a great future for your career!

#HYBRID #LI-OB1