Senior Information Security Engineer

Summary

Join RapidSOS, an intelligent safety company, as a Senior Information Security Engineer to drive impactful security automation initiatives. You will work with engineering teams to enhance security practices, embed security in the development lifecycle, and scale security automation across DevOps and CI/CD pipelines. This role involves identifying security gaps, reviewing code, performing threat modeling, and implementing security controls. You will collaborate with developers and stakeholders to integrate security principles into engineering design and deployments. Based in Boston or NYC with remote flexibility, this position offers competitive salary and benefits, equity participation, and the opportunity to make a real-world impact on public safety.

Requirements

• 5+ years experience of security engineering experience, preferably as a generalist with experience spanning security engineering, information security, network security, risk & compliance, and more in a cloud environment for a mission-critical production system
• Proven ability to implement and maintain robust information security controls, guidelines, and standards (e.g., OWASP, CSA CCM, CIS 20 Critical Security Controls, SOC 2, NIST) while deploying & managing comprehensive security programs and tools
• Proficiency in reading and understanding Python code and Bash scripting with ability to identify security gaps
• Knowledge of Software Development Life Cycle (SDLC) goals, processes, and tools
• Highly self-motivated; ability and willingness to adapt and learn quickly in a fast-paced environment with a strong sense of ownership
• Excellent verbal and written communication skills with the ability to work both collaboratively and independently, prioritizing tasks and solving problems effectively to resolution
• BA, BS, MS, or PhD in Computer Science, Cyber Security or related technology field, or equivalent experience
• This role requires being based in Boston or NYC with the flexibility to work remotely, along with the ability and willingness to collaborate in person quarterly or as needed

Responsibilities

• Spearhead and drive the security automation program forward by implementing security controls – delivering security tools, solutions, and processes into the environment that balance business requirements and cybersecurity requirements
• Build relationships with developers, stakeholders, and leaders to incorporate security principles into engineering design & deployments
• Advocate for a “shift left” approach by embedding security early in the development lifecycle and upholding Secure SDLC strategy & practices—using threat modeling and developer IDE security features to proactively safeguard our code
• Assist prioritization of vulnerabilities identified in code through automated and manual risk assessments, and promote quick remediation
• Enrich DevOps architecture with security standards and best practices, promote baseline configuration and work to reduce drift
• Review code, test code, and perform security threat modeling for various projects and RapidSOS products
• Actively contribute in defining and producing both tools and architectural designs used by the team
• Implement and oversee SOAR and ad-hoc automation solutions, streamlining our security operations and enhancing incident response
• Lead the implementation, testing, and validation of application security controls across projects, ensuring the highest standards of protection and reliability
• Proactively research and follow industry trends, best practices, and open source projects in security engineering

Preferred Qualifications

• Experience with manual and automated testing using tools such as Burp Suite and Zap
• Understanding of Terraform, CloudFormation / CDK and Jenkins
• Knowledge of Linux and docker or kubernetes systems administration
• Experience with various IT governance frameworks and standards like ISO-27000, COBIT, SOX, PCI, and/or HIPAA

Benefits

• Competitive salary and benefits and equity participation
• A dynamic, flexible and fun start-up work environment with a highly talented team
• The salary range for this role is $145,000 - $160,000
• This role will also be eligible to receive equity options