Jobs
>
New York City

    Sr SRE Security Engineer - New York, United States - DoubleVerify

    DoubleVerify
    DoubleVerify New York, United States

    3 weeks ago

    Default job background
    Description
    Sr SRE Security Engineer
    Who we are

    DoubleVerify is a big data and analytics company.

    We track and analyze tens of billions of ads every day for the biggest brands in the world like Apple, Nike, Disney, Vodafone, and most of the Fortune 500 companies.

    If you ever saw an Ad online via Web, Mobile, or CTV device then there are big chances that it was analyzed and tracked by us.


    We operate at a massive scale, our backend handles over 100B+ events per day, we analyze and process those events in real-time while making decisions on the environment where the ad is running and all the user interactions during the Ad display lifecycle.

    We verify that all Ads are Fraud Free, Brand Safe, in the right Geo and highly likely to be viewed and engaged, all that in less than a fraction of a second.

    What will you do

    We are in search of a Sr SRE Security Engineer to join our IT Security Team.

    This pivotal role entails close collaboration with the Site Reliability Engineering (SRE), Network, and Operations teams aimed at elevating our security posture.

    Reporting directly to the IT Security Manager within the Information Security Department, the Sr SRE Security Engineer will also be an essential component of the SRE team, concentrating on all facets related to security.


    As a Sr SRE Security Engineer, you should embody initiative, holding a fervent enthusiasm for both on-prem and cloud security while flourishing in the arena of vulnerability remediation and security troubleshooting.

    Your role will encompass providing operational support for Vulnerability Management and the associated remediation procedures.

    Our IT Security Team is engaged in identifying, assessing, and mitigating threats, vulnerabilities, and correlated risks pertaining to DoubleVerify's information assets and resources.

    Leveraging your technical skills, you will navigate across major public clouds and our global data centers, employing best-of-class tools to oversee and redress vulnerabilities.

    Job Responsibilities


    Work closely and in full coordination with multiple departments, SRE, Operation, DevOps, and Network teams to produce a highly secure posture.


    Handle, prioritize, and effectively bring security vulnerabilities to resolution for Production, Staging, and Dev environments; you will play an active part in resolving them.


    Develop, update, and guide procedures for security enhancements, test these procedures, and facilitate their handover to the operations team for complete remediation.


    Review vulnerabilities and data from various sources (e.g., vulnerability scanning, penetration testing) across different technologies and environments to assess the risk level to business assets and help remediate them.


    Build, configure, and manage vulnerability management tools within company environments, serving as the subject matter expert for vulnerability management queries.


    This position will be the liaison between the IT Security Team and various SRE, DevOps, Network, and Operation teams and must be able to provide technical remediation details or workarounds, help track and identify asset inventory, log work tickets and exceptions, and research vulnerability findings.


    Be the go-to expert for implementing security agents on Production, Staging, and Dev environments, ensuring the security of these assets throughout their lifecycle.

    (Such as configuring and troubleshooting any security solution agent & authentication issues).

    Proficiently managed security aspects of Linux, Windows, and ESXi servers, including patch management and fundamental security practices.


    Execute OS patching and work towards automating this process, following a thorough testing and deployment cycle across development, staging, and production environments, which include proper notification and auditing process.

    Implement technical solutions to automate repetitive tasks.

    Undertake notifications and audits related to security work and maintain a proactive and organized approach.

    Manage and follow up on tickets related to remediation or hardening requests.

    Provide analysis of Information Security vulnerabilities and determine true or false positives, and work with appropriate teams for remediation.

    Engage actively in Proof of Concept initiatives to assess and onboard novel security solutions. Offer technical expertise to ensure effective deployment and alignment with security goals. Document findings comprehensively and conduct thorough comparisons of potential solutions, aiding the team in making informed decisions.

    Help focus the engineering teams on working on high-value security issues and avoid toiling on non-security issues

    Demonstrate self-management skills to effectively track and report on work and time allocation.

    Who you are


    7+ years as a Security Engineer \ SRE \ DevOps engineer with a passion for security and doing things right.

    4-6 years of related experience in vulnerability management and remediation

    Hands-on Experience with patching and hardening Linux, Windows, and ESXi servers is essential.

    Experience with building, configuring, and managing patch management tools.

    High proficiency within cloud environments - with a preference for GCP and AWS.

    Proficiency in automation and configuration management tools (e.g Ansible,Terraform, Puppet).

    Proficiency in scripting languages, including Bash, Python and/or PowerShell.

    1-2 years developing playbooks, runbooks, and troubleshooting technical issues.

    Ability to grasp new technologies quickly and prioritize and multitask on multiple responsibilities

    Effective documentation skills, including technical diagrams and written descriptions.

    Experience analyzing vulnerabilities and adjusting the risk rating/severity dependent on internal factors.


    Experience defining Operating System Baseline Configuration standards such as the Center for Internet Security (CIS) Critical Security Controls Scanning within various scanning technologies and working with appropriate teams to remediate and report on the results.

    Proficient in firewall management, with hands-on experience in configuration and optimization to ensure network security.

    Familiarity with ITSM solutions, including platforms like Jira and Freshdesk.

    Clear communication and collaboration abilities for cross-functional teamwork.

    Critical thinking and ability to balance security requirements with mission needs.

    Exceptional organizational skills demonstrated through adept autonomy, independent work, collaborative teamwork, and an unwavering professional demeanor. This extends to adept tracking and comprehensive reporting of work and time allocations.

    Bonus Points

    Certifications from cloud vendors, as well as esteemed organizations like CISSP, CISM, or CISA, will be regarded favorably.


    The successful candidate's starting salary will be determined based on a number of non-discriminating factors, including qualifications for the role, level, skills, experience, location, and balancing internal equity relative to peers at DV.

    The estimated salary range for this role based on the qualifications set forth in the job description is between [$102,000- $202,000].

    This role will also be eligible for bonus/commission (as applicable), equity, and benefits.

    The range above is for the expectations as laid out in the job description; however, we are often open to a wide variety of profiles, and recognize that the person we hire may be more or less experienced than this job description as posted.

    Not-so-fun fact:


    Research shows that while men apply to jobs when they meet an average of 60% of job criteria, women and other marginalized groups tend to only apply when they check every box.

    So if you think you have what it takes but you're not sure that you check every box, apply anyway

    #J-18808-Ljbffr
  • Deutsche Telekom AG

    Web Application Security Engineer

    3 weeks ago

    Deutsche Telekom AG New York, United States

    Aufgabe · Als Web Application Security Engineer (w/m/d) unterstützt Du unser Betriebsteam bei folgenden Aufgaben: · Konzeption, Implementierung und Betrieb der WAF- (Web Application Firewall), Reverse-Proxy- und Loadbalancing-Systeme · Unterstützung bei Netzwerk- und Security-Th ...

  • Paragon Alpha - Hedge Fund Talent Business

    Security Engineer

    4 days ago

    Paragon Alpha - Hedge Fund Talent Business New York, United States

    Our client are a Tier 1 Hedge Fund, who take a quant approach to investing, and look after $63 billion in assets. After consistent and strong returns across their portfolios, they are hiring technical talent for both the London and NY office. · This hedge fund places security at ...

  • Paragon Alpha - Hedge Fund Talent Business

    Security Engineer

    2 days ago

    Paragon Alpha - Hedge Fund Talent Business New York, United States

    Paragon are working with a $20BN systematic fund - they were up 32% in 2023, a year when many struggled. Now they are looking to bring in elite team members to continue this into 2024. · Part of these plans include hiring a Cloud Security Engineer (AWS) to join their Security tea ...

  • MedReview Inc.

    Security Engineer

    3 weeks ago

    MedReview Inc. New York, United States

    WorkingConditions: Full-time (M-F), Office Business Settings. This is an On-Premises position. Monday through Thursday (9-5) and remote on Fridays only . · PositionSummary –The Security Engineer is responsible for securing – maintaining and monitoring MedReview's enterprise infra ...

  • Green Key Resources

    Security Engineer

    3 weeks ago

    Green Key Resources New York, United States

    Vulnerability detection through scanning platforms (Rapid7) · Implementation and planning with business and engineering team of found vulnerabilities · Remediation of vulnerabilities through multiple vectors (WSUS, GPO) · Antivirus policy creation, reporting, and remediation on ...

  • Green Key Resources

    Security Engineer

    3 weeks ago

    Green Key Resources New York, United States

    Department: Infrastructure Services · StaffTitle: Security Engineer · Reportsto: Director of IT · FLSAStatus: Exempt · WorkingConditions: Full-time (M-F), Office Business Settings. This is an On-Premises position. Monday through Thursday (9-5) and remote on Fridays only (No excep ...

  • TSR Consulting

    Security Engineer

    2 weeks ago

    TSR Consulting New York, United States

    About TSR: · TSR is a relationship-based, customer-focused IT and technical services staffing company. · For over 40 years TSR, Inc. and its wholly owned subsidiary, TSR Consulting Services, have prospered in the Information Technology staffing business, earning the respect of co ...

  • The Rockridge Group

    Security Engineer

    1 week ago

    The Rockridge Group New York, United States

    Job Description · Job DescriptionJob Title: Security EngineerLocation: 100% RemoteDuration: 6 months Contract To Hire About the Position Company X is seeking an exceptional Security Engineer to join its IT Security Team in our New York office. This person will join a distributed, ...

  • Figma

    Security Engineer

    2 weeks ago

    Figma New York, United States

    Figma is growing our team of passionate people on a mission to make design accessible to all. Born on the Web, Figma helps entire product teams brainstorm, design and build better products - from start to finish. Whether it's consolidating tools, simplifying workflows, or collabo ...

  • Alchemy

    Security Engineer

    2 weeks ago

    Alchemy New York, United States

    Our mission is to bring blockchain to a billion people. The Alchemy Platform is a world class developer platform designed to make building on the blockchain easy. We've built leading infrastructure in the space, powering over $105 billion in transactions for tens of millions of u ...

  • Commerzbank AG

    Security Engineer

    2 weeks ago

    Commerzbank AG New York, United States

    Functional Title: · Security Engineer · Corporate Title: · VP · Overtime Eligible (Y/N) · N · Department: · Technology Foundations · Reports To: (Position) · Regional Head of Infrastructure - NY · Management Responsibilities: (Y/N) · N · Position Summary: · Responsible for engine ...

  • E.L.F. Beauty, Inc.

    IT Security Engineer

    2 weeks ago

    E.L.F. Beauty, Inc. New York, United States

    About the Company · e.l.f. Beauty, Inc. stands with every eye, lip, face and paw. Our deep commitment to clean, cruelty free beauty at an incredible value has fueled the success of our flagship brand e.l.f. Cosmetics since 2004 and driven our portfolio expansion. Today, our mult ...

  • CyberTec

    IT Security Engineer

    2 weeks ago

    CyberTec New York, United States

    IT Security Engineer, 10 + Years · Work Location: ONSITE, Graybar Building, NYC · Desired Start Date: 3/18/2024 · Duration: 12 Months · Work hours: 40.00 · Business Organization:METROPOLITAN TRANSPORTATION AUTHORITY · Pay Rate $65 · Responsibilities include the following: ...

  • Oscar Health

    Senior Security Engineer, Cloud Security

    3 days ago

    Oscar Health New York, United States

    Hi, we're Oscar. We're hiring a Senior Security Engineer, Cloud Security to join our Security team. · Oscar is the first health insurance company built around a full stack technology platform and a focus on serving our members. We started Oscar in 2012 to create the kind of healt ...

  • Celonis GmbH

    Security Engineer

    2 weeks ago

    Celonis GmbH New York, United States

    We're Celonis, the global leader in Process Mining technology and one of the world's fastest-growing SaaS firms. We believe there is a massive opportunity to unlock productivity by placing data and intelligence at the core of business processes - and for that, we need you to join ...

  • DBI Staffing

    Network Security Engineer

    5 days ago

    DBI Staffing New York, United States

    Position Summary: · The network security engineer is a key position in the networking and network security team responsible for Next-Gen Firewalls, Routing, and Defensive Security. The network security engineer will report directly to the networking and network security manager a ...

  • Insight Global

    Network Security Engineer

    6 hours ago

    Insight Global New York, United States

    Thank you for your interest This Network Security Engineer role is a mid-level position, and is a temporary contract. The contract is currently approved for 6 months, and there is potential to extend an additional 3-6 months. · Title: Mid-Level Network Security Engineer · Addres ...

  • JCW

    Network Security Engineer

    4 days ago

    JCW New York, United States

    Our client, a mid sized commercial bank, is seeking a network security engineer who will help secure their network environment. This role will work closely with their network engineering manager and take on responsibilities for the security within the hybrid cloud/on-prem environ ...

  • MDS (Micro-Data Systems)

    Senior Security Engineer

    1 week ago

    MDS (Micro-Data Systems) New York, United States

    Senior Security Engineer · Location: Hybrid - 2-3 Days per week Onsite in Brooklyn, NY · Top skills/tools, etc. that are MUST haves: · Core security with experience deploying / upgrading and migrating Palo Alto firewalls · Consultative and team player · High level of experience w ...

  • SoundCloud Ltd

    Product Security Engineer

    1 week ago

    SoundCloud Ltd New York, United States

    We are looking for a Product Security engineer to join our Security team · As a Product Security Engineer, you will collaborate with cross-functional engineering teams to identify and address potential vulnerabilities and implement robust security measures in our products and ser ...