- Identify, implement and lead the technical security projects to mitigate the risks on our hosting and corporate infrastructure (such as the review of encryption systems and key management, the hardening of servers, the hardening of Active Directory etc.)
- Perform security and privacy design, architecture and/or configuration reviews on our hosting and corporate infrastructure and systems including Azure cloud environments, network devices, endpoints and security technologies deployed (SIEM, MDM, VPN, WAF, DDoS, NAC 802.1x etc.)
- Review/maintain and lead the vulnerability management program including performing infrastructure vulnerability scanning, internal and third-party penetration testing, reviewing and validating ad-hoc reported security vulnerabilities.
- Collaborate with the SOC team to improve our security investigation processes and capabilities.
- Build a threat intelligence program by developing threat intelligence tooling and capabilities to protect our brand, monitor our external attack surface and detect potential data leakage.
- Collaborate with IT operations, engineering and development teams to manage, monitor, track and remediate security incidents and provide a thorough post-event analysis.
- Provide support for the technical security and privacy controls related to compliance initiatives such as FedRAMP, PCI, NIST r5, IRAP, SANS CIS 20 and other commercial compliance efforts as necessary.
- Assist customer and prospect facing teams with technical security questions related to the Ivalua hosting infrastructure and platform security.
- Act as the SME on infrastructure security, expand and develop sharing of technical knowledge and collaborate with multiple internal teams to review and improve the technical architecture and efficiency of IT and security operational processes.
- 7+ years of experience on infrastructure and network security engineering/architecture, protocols and tools
- 5+ years hands-on experience in deploying security technologies like DLP, Database Activity Monitoring, MDM, NAC 802.1x, CASB, Azure cloud environments etc.
- 4+ years of experience in assessing Infrastructure (required) and Web Application (optional) vulnerabilities.
- Experience with scripting (such as Python, PowerShell etc.)
- Knowledge of Active Directory (key concepts, protocols, services, main attacks, best practices for hardening etc.)
- Knowledge of Cryptography concepts, encryption algorithms, protocols, keys and certificates management
- Experience with security concepts on Azure cloud environments and resources.
- Experience with security aspects of operating SaaS environments.
- Experience with security incident response and investigation.
- Experience with threat intelligence operations and tooling.
- Ability to foster collaborative, open and working relationships with technology and other stakeholders.
- Experience with security standards and compliance programs such as, NIST, FedRAMP, PCI, SANS CIS 20.
- An Information Security qualification or evidence of starting to work towards e.g CISSP, OSCP, AZ-500, GIAC GPEN or similar certification.
- Ability to handle multiple tasks, prioritize and meet deadlines.
- Prior experience in financial services, government or any other highly regulated sector is a plus.
- Bachelor's degree in computer science or equivalent.
-
Senior Security Engineer
2 weeks ago
HDI Service AG New York, United StatesIhre Aufgaben: · Verantwortung für den Betrieb und die Architektur der Splunk Infrastruktur · Weiterentwicklung der Splunk Plattform · Technische Beratung und Umsetzung von (Security) Use Cases · Ausbau der Interkonnektivität der Splunk Plattform · Integration, regelmäßige Ü ...
-
Junior Security Engineer
2 weeks ago
HDI Service AG New York, United StatesIhre Aufgaben: · Betrieb und Weiterentwicklung der technischen Cyber Security Lösungen (z.B. EDR, NDR, SIEM, Vulnerability-Scanning) · Administration von Security Agenten auf Endsystemen · Unterstützung bei der Planung, Installation, Konfiguration und Migration von innovativen ...
-
Web Application Security Engineer
19 hours ago
Deutsche Telekom AG New York, United StatesAufgabe · Als Web Application Security Engineer (w/m/d) unterstützt Du unser Betriebsteam bei folgenden Aufgaben: · Konzeption, Implementierung und Betrieb der WAF- (Web Application Firewall), Reverse-Proxy- und Loadbalancing-Systeme · Unterstützung bei Netzwerk- und Security-Th ...
-
IT security/security engineer
2 weeks ago
Aurora Ventures College City, United StatesAs a major regional employer, the Diocese of Essen employs professionals and leaders from over 30 different professions. · The Diocese of Essen is the sponsor of numerous educational institutions such as schools of various types, adult and family education facilities, kindergarte ...
-
Security Engineer
1 week ago
Paragon Alpha - Hedge Fund Talent Business New York, United StatesOur client are a Tier 1 Hedge Fund, who take a quant approach to investing, and look after $63 billion in assets. After consistent and strong returns across their portfolios, they are hiring technical talent for both the London and NY office. · This hedge fund places security at ...
-
Security Engineer
1 week ago
Locke and McCloud New York, United StatesSecurity Engineer (SOC) - Hybrid Role · Are you a seasoned Security Engineer with a passion for protecting critical assets and ensuring operational resilience? We are thrilled to announce an exciting opportunity for a Security Engineer (SOC) to join a leading organization in Okla ...
-
Security Engineer
2 weeks ago
Nationstaff New York, United StatesAbout This Role · We are seeking a highly capable Security Engineer / Senior Security Engineer, who will be responsible for various technical and cryptographic security aspects. This role requires a certain range of experience and an in-depth understanding of security engineerin ...
-
Security Engineer
2 weeks ago
Meta Defunct New York, United StatesSummary: · Meta Security is looking for a Security Engineer with experience in threat modeling, TTP identification, and detection engineering. You'll work alongside Software Engineers and Offensive Security Engineers to identify critical assets, assess the top risks, and evaluate ...
-
Security Engineer
2 weeks ago
Foursquare New York, United StatesAbout Foursquare · Foursquare is the leading independent location technology and data cloud platform, dedicated to building meaningful bridges between digital spaces and physical places. Our proprietary technology unlocks the most accurate, trustworthy location data in the worl ...
-
IT Security Engineer
2 weeks ago
NYC Health Hospitals New York, United StatesMetroPlusHealth provides the highest quality healthcare services to residents of Bronx, Brooklyn, Manhattan, Queens and Staten Island through a comprehensive list of products, including, but not limited to, New York State Medicaid Managed Care, Medicare, Child Health Plus, Exchan ...
-
Security Engineer
3 weeks ago
PRI Technology New York, United StatesThis is an onsite role in New York, NY · MUST HAVES: · "The ideal candidate for this requirement would have experience in assessing, implementing solutions, designing, and executing security controls. An additional advantage, as mentioned in the requisition, is expertise in clou ...
-
Security Engineer
3 weeks ago
DBI Staffing New York, United States***MUST BE COMMUTABLE TO THE NYC OFFICE BUT WON'T BE REQUIRED TO COME IN*** · As a Security Engineer you will play a crucial role in developing and maintaining the firm's cybersecurity infrastructure. This role includes hands-on design and administration of the Microsoft 365 Secu ...
-
Security Engineer
2 weeks ago
TSR Consulting New York, United StatesAbout TSR: · TSR is a relationship-based, customer-focused IT and technical services staffing company. · For over 40 years TSR, Inc. and its wholly owned subsidiary, TSR Consulting Services, have prospered in the Information Technology staffing business, earning the respect of co ...
-
Security Engineer
2 weeks ago
Betterment New York, United StatesAbout Betterment · Betterment is a leading, technology-driven financial services company that offers investing and retirement solutions for retail investors and investment advisors as well as financial wellness solutions, including a 401(k) for small and medium-sized businesses. ...
-
Security Engineer
2 weeks ago
Celonis GmbH New York, United StatesWe're Celonis, the global leader in Process Mining technology and one of the world's fastest-growing SaaS firms. We believe there is a massive opportunity to unlock productivity by placing data and intelligence at the core of business processes - and for that, we need you to join ...
-
Security Engineer
1 day ago
Green Key Resources New York, United StatesVulnerability detection through scanning platforms (Rapid7) · Implementation and planning with business and engineering team of found vulnerabilities · Remediation of vulnerabilities through multiple vectors (WSUS, GPO) · Antivirus policy creation, reporting, and remediation on ...
-
Security Engineer
1 week ago
Wallero New York, United StatesTitle: Security Engineer · Position: Contract · PRIMARY LOCATION: New York · Note: Only who are willing work on our W2 · Description: · Highly motivated self-starter with excellent interpersonal and problem-solving skills · Bachelor s degree or equivalent work experience · Good o ...
-
Security Engineer
3 weeks ago
X (formerly Twitter) New York, United StatesAre you prepared to join the X team and help build the ultimate real-time information-sharing app, revolutionizing how people connect? At X, we're on a mission to become a trusted global digital public square, committed to minimal censorship within legal boundaries. Our goal is t ...
-
Security Engineer
1 day ago
Green Key Resources New York, United StatesDepartment: Infrastructure Services · Staff Title: Security Engineer · Reports to: Director of IT · FLSA Status: Exempt · Working Conditions: Full-time (M-F), Office Business Settings. This is an On-Premises position. Monday through Thursday (9-5) and remote on Fridays only ( ...
-
Security Engineer
2 weeks ago
Datadog New York, United StatesWe are looking for a Security Engineer for the Software Integrity and Trust team to build systems that protect Datadog against various forms of supply-chain attacks. · You'll join at an ideal time to make a big impact: supply-chain attacks continue to be one of the fastest growin ...
Senior Security Engineer - New York, United States - Ivalua
Description
Apply NowSenior Security Engineer (Cloud and Infrastructure Security) at Ivalua (View all jobs)
New York City, New York-US
Senior Security Engineer (Cloud and Infrastructure Security) - New York, NYC
About Ivalua
A "Magic Quadrant" leader, Ivalua's solutions work in a complex global economy. Our innovative Source-to-Pay solutions include automating customized workflows to source, contract, request, procure, receive, and pay for goods and services across the enterprise, refining the procurement lifecycle while reducing cost and risk of spending on indirect goods, direct goods and services, and improving supplier collaboration.
All companies want the best and brightest. At Ivalua, we also want team members who have a global point of view and who bring customer-focused enthusiasm and ambition to the table. We are a company of doers, of problem solvers, of figure-it-outers. We have fun and we work hard. This is a truly global company with a diverse team of contributors and a set of core values that people can feel every day across all our offices.
About the Team
Our team is very hands-on with a strong mindset of problem solving while also having the ability to think of the implementation holistically and provide solutions that solve the customer's long-term challenges. Our team works hard, plays hard and enjoys all indoor and outdoor activities that the company organizes from time to time, so that you can focus, work collaboratively, and be at your creative best.
Opportunity Statement
This full-time position requires the candidate to be physically in the office 3 days a week (on a hybrid schedule).
As a Senior Security Engineer, you will work with InfoSec, IT and R&D teams to keep our enterprise-class SaaS service secure from a variety of threats. You will engineer, implement, review and monitor technical security controls to protect and enhance the security of our hosting infrastructure, networks and applications. You will also help with operational security aspects which will include performing security reviews on infrastructure changes, reviewing firewalls rules, analyzing results from vulnerability or penetrationtesting reports, investigating security events by analyzing logs and identifying actionable plans to address in the infrastructure.
Responsibilities:
Skills Required:
Preferred Education:
Ivalua's core values include a priority on Care & Grow People. We take matters like pay equity very seriously and strive to reward our employees appropriately and fairly for their talents.
The compensation range for this position reflects the cost of labor across our US locations and is based upon careful and continual market research. In addition to location, compensation may also vary based upon job-related knowledge, skills, and experience.
Title: Senior Security Engineer
Range minimum: USD 112000
Range maximum: USD 208000
Additional compensation / rewards: Ivalua also offers exceptional benefits including medical, dental, vision and transportation.
Check out our video and find out Who We are ? )
Join Ivalua today and procure a great future for your career
#HYBRID #LI-OB1
Senior Security Engineer professionals in New York City
-
Matthew Cowan
Events and Operations Professional
-
Malcolm Eastman
Network/Cloud Engineer
-
Vincent Ricci
Sales Leader Who Drives Growth
-
Di Wu
Software Engineer / Data Scientist
-
Rachel Miller
Mechanical Engineer
-
Mina Fahim
Senior Associate | Multi-Asset Solutions | NYLIM