Jobs

    Security Engineer - Washington, United States - Kensho

    Kensho
    Kensho Washington, United States

    3 weeks ago

    Default job background
    Description


    At Kensho, we hire talented people and give them the autonomy and support needed to build amazing technology and products.

    To do this, we look for people who insist on a bias towards action to minimize unhelpful hierarchy and process.

    We collaborate using our teammates' diverse perspectives to solve hard problems. Our communication with one another is open, honest and efficient.

    We produce a suite of AI-powered solutions that solves the challenges of the largest, most successful businesses and institutions, helping them make sense out of a world full of messy data.

    As a security focused engineer at Kensho you are a thoughtful, collaborative, and seasoned technologist who will be working closely with the Infrastructure team to ensure security across a number of systems and web applications.

    You will help us protect network boundaries, keep systems and network devices against attacks and provide security frameworks and processes to protect confidential data like passwords and client information.

    At Kensho, we believe in flexibility-first, and give our employees the opportunity to work from where they feel most productive and engaged (must be in the United States).

    We also value in-person collaboration, so there may be times when travel to one of our Kensho hubs (NY/DC/MA) will be required for team meetings or company events.


    What You'll Do:
    Design and implement security controls and policies across Kensho and provide oversight to ensure compliance
    Analyze and recommend security practices and tools for engineering teams to incorporate into the software development lifecycle
    Knowledge of e2e application frameworks to execute security reviews and uncover vulnerabilities
    Directly interface with customer infosec teams, lawyers, external security researchers as well as internal partners to ensure that Kensho maintains a best-in-class security envelope
    Design and implement policies for third party vendor screening and dependency management
    Implement procedures to respond to and recover from security incidents
    Monitor Kensho's networks and systems for potential intrusions and investigate anomalous behavior
    Perform static and dynamic vulnerability assessments of applications using commercial and open source tools such as Fortify, Bandit, WebInspect and OWASP Zap

    What We Look For:
    Three or more years of experience as a security engineer
    Experience securing modern web applications and distributed data infrastructure in a cross-team setting
    Strong understanding of cryptography and current best practices
    Experience with penetration testing tools, techniques and methodologies and understanding of common vulnerabilities and remediation strategies
    One or more years experience writing code in Python, Javascript, Java, or GoFamiliarity with core networking concepts and standard protocols such as TCP, UDP, and HTTP
    Prior experience working with enterprise security technologies such as firewalls, IDS/IPS, AntiVirus/EDR, or Security Information and Event Management systems
    Ability to apply risk management tools and methodologies
    Experience conducting or facilitating IT security audits
    Familiarity with security models for cloud providers such as AWS, Azure and GCP
    How

    To Really Grab Our Attention:
    Experience securing services and applications running on Kubernetes
    Experience working with Jenkins, Terraform, LinkerD, Vault, or Okta
    Participation in CTFs or bug bounty programs
    Open source project contributions showing innovation and initiative
    Hedge fund or major financial institution trading experience
    Relevant research, publications, and patents
    At Kensho, we pride ourselves on providing top-of-market benefits, including:

    Medical, Dental, and Vision insurance

    100% company paid premiums

    Unlimited Paid Time Off

    26 weeks of 100% paid Parental Leave (paternity and maternity)

    401(k) plan with 6% employer matching

    Generous company matching on donations to non-profit charities

    Up to $20,000 tuition assistance toward degree programs, plus up to $4,000/year for ongoing professional education such as industry conferences

    Plentiful snacks, drinks, and regularly catered lunches

    Dog-friendly office (CAM office)

    In-office gyms and showers (CAM, DC)

    Bike sharing program memberships

    Compassion leave and elder care leave

    Mentoring and additional learning opportunities

    Opportunity to expand professional network and participate in conferences and events

    About Kensho


    Kensho uses machine learning, artificial intelligence, natural language processing and data visualization techniques to solve some of the hardest analytical problems and create breakthrough financial intelligence solutions for our parent company, S&P Global.

    Kensho was founded in 2013 by Harvard & MIT alums and was acquired by S&P Global in 2018.

    Kensho continues to operate as a startup in order to maintain our distinct, independent brand and to promote our breakthrough, innovative culture.

    Our team of Kenshins enjoy a dynamic and collaborative work environment that runs autonomously from S&P, while leveraging the unparalleled breadth and depth of data and resources available as part of S&P Global.

    As Kenshins, we pride ourselves on maintaining an innovative culture that depends on diversity and inclusion.

    We are an equal opportunity employer that welcomes future Kenshins with all experiences and perspectives. Kensho is headquartered in Cambridge, MA, with offices in New York City, and Washington D.C.


    All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, or national origin.

    #J-18808-Ljbffr
  • ARK Solutions, Inc.

    Security Engineer

    3 weeks ago

    ARK Solutions, Inc. Washington, United States

    CLIENT: Federal · Position : Security Engineer/ Splunk Engineer · 6 months Contract · Washington, DC (Onsite) · Education: Bachelor's degree in in Cybersecurity or related field. · Required Skills: "Five (5) to seven (7) years of hands-on experience with security monitoring tool ...

  • Global InfoTek

    Security Engineer

    3 weeks ago

    Global InfoTek Washington, United States

    Clearance Level: Top Secret clearance with SCI eligibility · US Citizenship: Required · Job Classification: Full-time · Location: District of Columbia · Experience: 5 years of experience in system security analysis and implementation; secure system engineering or design; and ...

  • Verotis

    Security Engineer

    3 weeks ago

    Verotis Washington, United States

    Verotis is seeking an experienced Security Engineer to support security operations, strategy, planning, architecture, vulnerability assessments and remediation, and coordination with various government security entities. This includes the documentation of security strategy, plann ...

  • Constellation West

    Cloud Security Engineer

    1 week ago

    Constellation West Washington, United States

    Constellation West is seeking a highly motivated Cloud Engineer to join our team in pursuing a contract with the USDA. This presents a distinctive chance for an experienced Federal Government contractor with CCSP and AZ-900 certifications to contribute to the writing and speak on ...

  • Gridiron IT

    Sr Security Engineer

    3 weeks ago

    Gridiron IT Washington, United States

    GridIron IT is seeking a · Security Engineer local · to · Washington DC. · Onsite 2/3 days a week in Washington, DC. DOJ Public Trust requirement- If the candidate does not have one, must be eligible to clear. TS or Secret can qualify for reciprocity. Veteran is a plus (not a ...

  • Constellation West

    Cloud Security Engineer

    5 days ago

    Constellation West Washington, United States

    Constellation West is seeking a highly motivated Cloud Engineer to join our team in pursuing a contract with the USDA. This presents a distinctive chance for an experienced Federal Government contractor with CCSP and AZ-900 certifications to contribute to the writing and speak on ...

  • CoStar Realty Information, Inc.

    Product Security Engineer

    3 weeks ago

    CoStar Realty Information, Inc. Washington, United States

    Product Security Engineer - Web Applications · Job Description · Overview · CoStar Group (NASDAQ: CSGP) is a leading global provider of commercial and residential real estate information, analytics, and online marketplaces. Included in the S&P 500 Index and the NASDAQ 100, CoS ...

  • Marathon TS

    Network Security Engineer

    9 hours ago

    Marathon TS Washington, United States

    Marathon TS is hiring a Network Security Engineer to support our client in the Washington DC area. This is a 100% remote role, and the best candidate will be a clearable US citizen and have the following skills: · Provide technical and administrative direction for problem definit ...

  • Nationwide IT Services, Inc.

    System Security Engineer

    1 week ago

    Nationwide IT Services, Inc. Washington, United States

    System Security Engineer Washington, DC Apply Now · System Security Engineer · Active Top Secret/SCI eligible Clearance Required DOE Clearable · Washington DC · Position Overview: · Nationwide IT Services is seeking a Physical Security Specialist to support our Federal Client in ...

  • ECS Limited

    Network Security Engineer

    1 week ago

    ECS Limited Washington, United States

    ECS is seeking a · Network Security Engineer · to work in our · Washington, DC · office. · Please Note: · This position is contingent upon contract award. · Job Description: · Day-to-day triage, investigation, and mitigation of security threats, network incidents as well ...

  • Dexian

    Senior Application Security Engineer

    5 days ago

    Dexian Washington, United States

    Position: Senior Application Security Engineer · Location: Washington DC (Hybrid) · Job Type: 3 months contract - Possible extension · Job description: · Role: Senior Application Security Engineer · Client seeks a skilled professional to assist with Application Security Engine ...

  • Koniag Government Services

    Cloud Security Engineer

    1 week ago

    Koniag Government Services Washington, United States

    ATS · Job ID · Arlluk Technology Solutions , a Koniag Government Services company, is seeking an experienced · Cloud Security Engineer · with a TS/SCI clearance to support · ATS · and our government customer in Washington, DC. · We offer competitive compensation and an ext ...

  • ClearFocus Technologies

    Software Security Engineer

    5 days ago

    ClearFocus Technologies Washington, United States

    ClearFocus Technologies, a HUBZone certified company, is located in Leesburg, VA.We specialize in cybersecurity and support multiple government and commercial clients for a variety · of missions. We value our clients, integrity and employees and believe a single person can make ...

  • Funko

    Sr. Security Engineer

    3 weeks ago

    Funko Washington, United States

    Funko Overview · Welcome to the Funko-verse, a world built on pure imagination, a land governed by the philosophy that stories matter, a universe comprised of characters from countless fandoms, a galaxy of once upon a times and happily ever afters. · But what does Funko do? · Fun ...

  • ECS Limited

    Cloud Security Engineer

    3 weeks ago

    ECS Limited Washington, United States

    ECS is seeking a Cloud Security Engineer - Mid to work in our Washington, DC office. · Job Description: · Identify security issues and risks, develop mitigation plans; architect, design, implement, support, and evaluate security focused tools and services · Develop and interpret ...

  • SAIC

    Security Engineer Senior

    3 weeks ago

    SAIC Washington, United States

    · SAIC seeks a Senior Security Engineer to supporting the Department of Transportation's Cybersecurity mission by joining a dedicated team of cybersecurity professionals who collaborate, cooperate, and facilitate maintaining and enhancing the security posture of DOT information ...

  • Prime Source Technologies

    DevOps Security Engineer

    2 weeks ago

    Prime Source Technologies Washington, United States

    Share this job as a link in your status update to LinkedIn. · Job Title · DevOps Security Engineer · Job Type · Full-time · Location · Washington, DC US (Primary) · Job Description · Prime Source Technologies is currently seeking a DevSecOps Engineer to support our client. · Dut ...

  • SiriusXM

    Senior Security Engineer

    3 weeks ago

    SiriusXM Washington, United States

    Responsibilities: · Who We Are: · SiriusXM and its brands (Pandora, SiriusXM Media, AdsWizz, Simplecast, and SiriusXM Connect) are leading a new era of audio entertainment and services by delivering the most compelling subscription and ad-supported audio entertainment experienc ...

  • Agile Defense

    Security Engineer II

    2 weeks ago

    Agile Defense Washington, United States

    Agile Defense provides leading-edge Digital Transformation solutions to support and advance our customers' mission. We deliver innovative and high-quality services to our customers worldwide through an empowered and engaged workforce. · Job Title: · Security Engineer II · Locati ...

  • Bering Straits Native Corporation (BSNC)

    Cyber Security Engineering

    3 weeks ago

    Bering Straits Native Corporation (BSNC) Washington, United States

    Overview: · Visit our website at to apply · Equal Opportunity Employer/Veterans/Disabled · SUMMARY · Bering Global Solutions (BGS) a subsidiary of Bering Straits Native Corporation is currently seeking a qualified Cyber Security Engineer (SIEM/SOAR) for Washington D.C. · ...