Job Description:
Sr. Security Operations Engineer for HOT Data Start-up in Mountain View, CA
Join a rapidly growing data start-up specializing in data value engineering as a Sr. Security Operations Engineer and play a key role in securing our cloud-hosted applications while ensuring compliance with industry standards. Our innovative platform offers a comprehensive approach to data management, covering collection, analysis, packaging, visualization, and exchange. Designed for flexibility and integration, our system empowers organizations and individuals to take control of their data, recognize its ownership, and maximize its value.
Responsibilities:
Hands on engagement in security review, implication and compliance issues with Developers, DevOps, customers.
Drive security audit reviews and certification process
Configure, integrate and implement various security controls using tools and technologies (IAM, MFA, SSO, Firewall/IDS/IPS systems, Network/application vulnerability scanners etc) in cloud environment
Understanding of Security Industry Standards and Compliance Frameworks and Requirements (PCI-DSS, SOC2, CIS configuration Benchmarks, NIST, GDPR, LGPD, etc.)
Build dashboards of various security controls implemented for reviews by compliance team
Develop and augment security process automation through scripting or programming
Work collaboratively with developers, staff and business partners
Document tasks, procedures, environments in configuration
Requirements:
3+ years of experience in security operations
2+ years of experience designing, building, implementing, integrating and/or maintaining code
Deep understanding of security controls for data security in cloud hosted applications based on PCI-DSS & SOC2 standards
Experience in vulnerability assessment using tools like GitHub Advanced Security, SonarQube, Qualys etc
Experience working in AWS cloud environments (Azure or GCP a nice to have).
Ability to develop automation scripts and perform design reviews
Strong experience implementing security controls and integration in cloud hosted environments using tools and technologies (IAM, MFA, SSO, DLP systems, Firewall/IDS/IPS systems, Secure Configurations, network/application vulnerability scanners)
Understanding of the security industry standards and compliance frameworks, controls and requirements (PCI-DSS, SOC2, CIS configuration Benchmarks, NIST, GDPR, LGPD, etc.)
Understanding of OWASP vulnerabilities and common network/application/API attacks
Some experience in task automation with Python/Shell Scripting
At least one of the security certifications, like CISA, CISM, GSEC, CASP+
Education:
Bachelor of science degree (or equivalent) in computer science, engineering, or similar experience
Type: Fulltime and Hybrid work schedule
Location: Mountain View, CA
Salary Range: $155K-$175K/Year, plus benefits