Security Engineer II

Summary

Join Garner's dynamic team as a Security Engineer and play a crucial role in protecting our digital assets. You will design, implement, and operate security tooling, respond to security incidents, and ensure compliance with security standards. This position requires experience in security engineering, in-depth knowledge of network security, and strong communication skills. The ideal candidate will have a Bachelor's degree in a related field and 4+ years of experience. Garner offers a competitive salary, equity incentives, and comprehensive benefits. We are committed to providing a supportive and collaborative work environment.

Requirements

• Bachelor's degree in Computer Science, Information Security, or a related field
• Proven experience (4+ years) in a security engineering role, preferably in a fast-paced environment such as a technology company or HealthTech company
• In-depth knowledge of network security principles, protocols, and technologies
• Hands-on experience with security tools and technologies such as Datadog, Wiz, or similar
• In-depth knowledge of AWS cloud infrastructure, cloud based security tools and services
• Strong understanding of common security vulnerabilities and attack vectors, including experience with threat modeling, as well as techniques for their detection, prevention, and mitigation
• Excellent analytical and problem-solving skills, with the ability to analyze complex security incidents and recommend effective solutions
• Strong communication skills, with the ability to convey technical information to non-technical stakeholders and collaborate effectively with cross-functional teams
• Proven ability to work independently, prioritize tasks, and manage multiple projects simultaneously while adhering to deadlines

Responsibilities

• Design, implement, and operate security tooling and components in cloud and on-premises ecosystems including, but not limited to, AWS and GCP, Snowflake, Wiz, Okta
• Monitor security landscape for suspicious activity, investigate potential security incidents, and coordinate incident response efforts to mitigate threats and minimize their impact
• Assist regular vulnerability assessments and penetration tests, analyze results, and collaborate with relevant teams to prioritize and remediate security vulnerabilities in a timely manner
• Ensure compliance with relevant security standards, regulations, and best practices (e.g., HITRUST, SOC 2, ISO 27001) through continuous monitoring, auditing, and enforcement of security policies and procedures
• Develop and deliver security awareness training programs for employees, educate stakeholders on security best practices, and promote a culture of security awareness throughout the organization
• Document security incidents, their resolution, and lessons learned for future reference. Prepare and present regular reports on security metrics, incidents, and trends to management and relevant stakeholders
• Research, evaluate, and recommend new security technologies, tools, and processes to enhance the organization's security posture and capabilities. Integrate new security solutions into existing infrastructure as needed

Preferred Qualifications

Advanced degree or relevant certifications (e.g., CISSP, CEH, GIAC)

Benefits

• Equity incentive
• Competitive benefits plans