Security Engineer

Summary

Join Modern Campus as a Security Engineer and play a crucial role in maintaining our organization's security posture and compliance programs. You will be responsible for maintaining a comprehensive security assessment program, analyzing security scan results, engineering and implementing security controls, and coordinating audit activities. This position requires collaboration with internal and external teams to ensure continuous compliance and drive security initiatives. You will also be responsible for implementing incident response procedures and staying current on the latest vulnerabilities and security trends. The ideal candidate possesses a university degree, strong programming skills, advanced knowledge of cloud platforms, and experience with various security tools and frameworks. Modern Campus offers a competitive salary, a remote-first workplace, rewards and recognition programs, and learning and development opportunities.

Requirements

• University or College degree in Computer Science, Information Technology, Cybersecurity, Data Privacy or related field with 3+ years of work experience
• Strong programming/scripting skills for security automation and tool integration
• Advanced knowledge of cloud platforms and infrastructure, preferably AWS and Azure
• Experience with security control automation and infrastructure as code
• Hands-on experience implementing and configuring: Vulnerability scanning tools (Qualys, Nessus, Snyk, Tenable, Rapid7)
• SIEM platforms and log correlation systems
• IDS/IPS and WAF technologies
• Attack Surface Management (ASM) tools
• In-depth knowledge of OWASP Top 10 vulnerabilities and application security best practices
• Understanding of privacy laws and regulations (GDPR, CCPA, etc.)
• Knowledge of NIST and CIS Benchmarking frameworks and ISO 27001
• Understanding of PCI DSS, SOC 2, and TX-RAMP / StateRAMP frameworks
• Experience with audit preparation and coordination
• Strong knowledge of information security principles and best practices
• Excellent documentation and technical writing skills
• Strong project management and organizational abilities
• Experience building and maintaining effective relationships with cross-functional stakeholders in a remote-first work environment

Responsibilities

• Maintain a comprehensive security assessment program that includes vulnerability management, penetration testing coordination, and risk analysis, delivering actionable insights to improve our security posture
• Analyze and interpret security scan results and vulnerability reports to develop prioritized remediation strategies, working closely with development teams to address vulnerabilities effectively
• Engineer and implement security controls based on industry standards (NIST, CIS, ISO), continuously evaluating and enhancing our security infrastructure
• Coordinate and facilitate audit activities, including evidence collection, preparation of audit documentation and submissions
• Track compliance requirements and deadlines across multiple frameworks
• Collaborate with IT and DevOps teams to architect, configure and implement security monitoring and defense tools (ie. SIEM, IDS/IPS, ASM, WAF) to safeguard against security breaches, cyber threats, and unauthorized access
• Implement incident response procedures, including assessing impact, incident reporting and coordinating with relevant teams for containment and resolution
• Stay current on the latest vulnerabilities, security trends, and data privacy standards

Benefits

• The base salary range* for this full-time position is between $70,000 - $140,000
• Remote first workplace – whether working from one of our offices or remotely, and you are located in anywhere in North America our employees get things done!
• Rewards and recognition programs
• Learning and development opportunities