Remote Security Engineer

Summary

The job is for a Security Engineer role at EngFlow, a remote SaaS company that speeds up software builds and tests. The role involves ensuring security and SOC 2 compliance, collaborating with stakeholders, and managing pentest processes. The team enjoys team events and meetings at exciting destinations.

Requirements

• Passion for optimization and analyzing complex challenges in the security engineering space
• Advanced knowledge of supply chain and cloud security
• Experience managing pentest processes with external vendors
• Experience with SOC2 / FedRAMP audits
• Skilled at intrusion detection and prevention practices
• Expertise in vulnerability tracking and management
• Familiarity with at least one build system: Bazel, CMake, Maven, Gradle, Nix, Buck, others
• Experience in or passion for DevOps and DevInfra
• Experience in Linux and the Unix shell
• Experience with at least one Cloud infrastructure: AWS, Azure, GCP, OpenShift, Oracle Cloud. Terraform experience is a plus
• Previous experience owning and updating an ISMS and other security documentation / resources

Responsibilities

• Ensure our systems are secure and SOC 2 compliant
• Collaborate with numerous stakeholders across business and tech functions to understand security requirements
• Work through security questions, questionnaires, and reviews with prospects and customers

Benefits

• Comprehensive medical, dental, vision benefits
• 401k bonus
• Parental leave and generous vacation
• Team events and meetings at exciting destinations throughout the year