Security Engineer

Summary

Join Instructure, a company revolutionizing educational data management, as a Security Engineer. You will design, implement, and maintain security tooling for our SaaS platform, collaborating with cross-functional teams to address vulnerabilities and ensure compliance. This critical role involves infrastructure and application security, including securing cloud environments, managing CI/CD pipeline controls, and performing vulnerability analysis. You will also contribute to security operations, incident response, and the improvement of SOAR practices. The ideal candidate possesses strong problem-solving skills, 3+ years of relevant experience, and proficiency in securing cloud environments. Instructure offers a competitive salary, comprehensive benefits, and a positive work environment.

Requirements

• Ability to work effectively on a remote team in a collaborative, fast-paced, and dynamic environment
• Strong communication skills, with the ability to convey technical concepts to both technical and non-technical stakeholders
• A polite, professional demeanor and a commitment to fostering a positive and respectful workplace
• Excellent problem-solving and critical-thinking skills
• Willingness to learn on the job and work outside of your comfort zone
• 3+ years of experience in a security engineering role or similar application engineering role
• Proficiency in securing cloud environments (AWS)
• Strong familiarity with DevSecOps and CI/CD pipeline security
• Hands-on experience with security tools such as vulnerability scanners and code analysis tools
• Understanding of OWASP Top 10 and overall secure application development principals
• Working understanding of networking, encryption, authentication protocols, and secure application development

Responsibilities

• Ensure secure configurations of cloud environments (e.g., AWS)
• Develop and maintain infrastructure-as-code (IaC) security practices
• Design, implement, deploy, and maintain security tooling
• Oversight and management of CNAPP platforms
• Responsible for deployment, management, and maintenance of zerotrust platform(s) and supporting an overall zerotrust philosophy architecture and culture
• Using static code analysis, dependency vulnerability scanning tools (Snyk) to identify and remediate vulnerabilities in application code
• Management of CICD pipeline controls using Git (Github Actions) for enforcement of security controls
• Collaborate with developers to identify and mitigate vulnerabilities in the software development lifecycle (SDLC)
• Perform code reviews and provide guidance on secure coding practices
• Manage third-party dependency packages and container images for security and patching processes
• Perform vulnerability prioritization analysis based on severity and impact
• Perform testing and validation application vulnerability patches
• Help build, maintain, and improve Security Orchestration and Automated Response (SOAR) practices to auto-remeidate and enrich security events
• Responsible for building security altering based on relevant Indicators of Compromise (IoC) using log aggregation tools (Splunk, Observe, Sumologic)
• Activity participate in investigations and incident response activities, including being part of the incident response team, investigating alerts, and working with cross functional teams to resolve any active attacks or potential threats

Preferred Qualifications

• Fluency in development languages like Java, JavaScript, Ruby, Ruby on Rails, etc
• Certifications such as CISSP, CEH, OSCP, or AWS Security Specialty
• Experience with container security (e.g., Docker, Kubernetes)
• Knowledge of scripting languages (e.g., Python, Bash) for automation
• Knowledge of security frameworks (e.g., NIST, OWASP, CIS Benchmarks)
• Contributions to open-source projects
• Hands-on experience with security tools such as SIEM, IDS/IPS, firewalls, and vulnerability scanners

Benefits

• Competitive salary and 401k
• Medical, dental, disability, and life insurance
• HSA program, vision, voluntary life, and AD&D
• Tuition reimbursement
• Paid time off, 11 paid holidays, and flexible work schedules
• LifeStyle Spending Account