Apply Now
Application opens on company website
Job Description
The Senior Security Engineer is responsible for identifying and mitigating security risks within the corporate network, performing security audits and tests, managing security solutions, and ensuring compliance with industry standards to protect the company's infrastructure and applications.
Key Responsibilities
- Identify, monitor, and maintain the company's security posture in collaboration with engineering teams.
- Perform security audits, penetration tests, and physical security reviews for clients.
- Select, deploy, and manage security solutions and enhancements to improve enterprise security.
- Develop and maintain threat models for cloud environments and train teams on attacker risk-driven design.
- Provide expertise on secure SDLC practices, including secure design, development, testing, and runtime security.
- Partner with infrastructure and application teams to ensure deployed solutions minimize security and privacy risks.
- Maintain and update incident response programs and recommend security practices to ensure compliance.
- Review application designs, source code, and deployments for security vulnerabilities.
Requirements
- The Senior Security Engineer must have a B.A. or B.S. or higher level degree in Computer Science or a similar engineering program with strong academic performance.
- The candidate must have at least 8 years of information security experience.
- The candidate must possess one or more of the following information security certifications: CISSP, CISA, CEH, OSCP, or other relevant certifications.
- The candidate must have experience performing security reviews of application designs, source code, and deployments.
- The candidate must have knowledge of and stay up to date on the latest security advisories, alerts, and vulnerabilities.
- The candidate must have strong verbal and written communication skills suitable for a highly collaborative environment.
- The candidate must have rigorous attention to detail and a focus on the quality of deliverables.
- The candidate must be familiar with AWS services such as EC2, ECS, WAF, VPC configuration, and IAM rules.
- The candidate must have familiarity with infrastructure as code tools such as Terraform and CloudFormation.
- The candidate must be comfortable with Python programming and able to read Java when necessary.
- The candidate must have the ability to perform security audits, application and infrastructure penetration tests, physical security reviews, and social engineering tests.
- The candidate must be able to develop and maintain threat models for cloud environments and train engineering teams in attacker risk-driven design skills.
- The candidate must have the ability to document policies and procedures and keep them updated according to industry compliance requirements.
- The candidate must have the ability to oversee and manage the deployment, integration, and configuration of security solutions and enhancements.
- The candidate must have experience developing and maintaining threat models for cloud environments.
- The candidate must have the ability to develop and implement security policies, procedures, and incident response programs.
- The candidate must be able to recommend actions to management to ensure compliance with security and regulatory requirements.
- The candidate must have the ability to craft responses to client and partner security questionnaires.
- The candidate must have experience performing security reviews of application designs, source code, and deployments.
- The candidate must have the ability to perform physical security reviews and social engineering tests.
- The candidate must be able to perform security audits and penetration testing of applications and infrastructure.
- The candidate must have the ability to select, acquire, and implement security solutions or enhancements to improve enterprise security.
- The candidate must have the ability to partner with infrastructure, application, and other stakeholders to minimize security and privacy risks.
- The candidate must have the ability to keep up-to-date with industry developments, including new security solutions, processes, and attack techniques.
Benefits & Perks
Competitive pay
Subsidized medical plan options
HSA with generous company contribution
401(k) with employer match
Paid holidays
Wellness time
Vacation increasing with tenure
Paid maternity and bonding leave
Company-paid disability insurance
Company-paid life insurance
FSAs
Well-being resources and activities
Casual dress work environment
Ready to Apply?
Join Alarm.com and make an impact in renewable energy
Stay Updated on Sustainability Jobs
Get the latest renewable energy jobs and career tips delivered to your inbox.
Job Alerts
Get notified about new sustainability jobs
More jobs at Alarm.com
Director, Finance IT Systems
Alarm.com
NEW
Tysons
Full Time
2d
Product Manager II
Alarm.com
NEW
Austin
Full Time
2d
Enterprise Sales Development Representative
Alarm.com
Liberty Lake
Full Time
3d
$75k-90k