Security Engineer - San Mateo, United States - GoAnimate

    GoAnimate
    GoAnimate San Mateo, United States

    Found in: Lensa US 4 C2 - 1 week ago

    Default job background
    Description
    In your role as Security Engineer, you will help the company implement established information security policy.

    You will contribute to the implementation and maintenance of our information security program, such as:

    Review daily company processes and ensure the needed controls are in place throughout the Plan-Do-Check-Act cycle.
    Implement tracking to measure effectiveness of the corporate information security program.
    Implement security controls in accordance with established security policies.
    Research and implement new compliance initiatives.
    Conduct security evaluations against 3rd party vendors.
    Assist in security risk assessments initiated by internal or external parties.
    Plan and execute security assessments with third-party consultants, tracking vulnerabilities identified to remediation.

    Advise internal stakeholders on recommended security best practices in order to ensure ample consideration of information security in business processes.

    Research security solutions tailored to the needs of the business.

    Other ad-hoc duties assigned by the Security Manager, who currently resides in APAC.This is NOT an information security auditor role.

    The chosen candidate needs to demonstrate sufficient technical knowledge and the ability to acquire same in response to changing business requirements or threats to actually help devise solutions and make things happen.


    Requirements:


    Bachelor Degree in Computer Science, Information Systems, or a related field.4+ years of experience working in an information security-related capacity is mandatory.

    Good command of English, both spoken and written.
    Good at collaborating with different parties, while also able to work independently as needed.
    Understanding of the threat landscape for a typical SaaS, and typical industry solutions for mitigating such threats, are required.
    Understanding of security aspects surrounding Web / mobile applications, machine learning / artificial intelligence and SDLC is required.
    Understanding of agile development methodologies, DevSecOps and threat hunting is a plus.
    Capability to multi-task effectively.
    Attention to detail and think-outside-the-box mentality.
    Good project management skills are an advantage.
    Holder of security certifications in good standing is an advantage.
    Knowledge and experience of information security frameworks, established compliance standards (e.g. ISO27001, NIST standards, FedRAMP / FISMA) and data privacy legislation (e.g. GDPR, CCPA) is an advantage.

    #J-18808-Ljbffr