Senior Security Engineer

Summary

Join EnergyHub, a company empowering utilities and their customers to create a clean energy future, as a Senior Security Engineer. You will play a hands-on role in enhancing the security of our infrastructure and software development lifecycle, focusing on both strategy and implementation. This position involves guiding best practices for the engineering team, building and automating processes for secure application delivery, and developing a roadmap for security improvements. You will also participate in maintaining compliance with various regulatory frameworks. The role requires collaboration with cross-company teams and our parent company's security team. This is an opportunity to make a significant impact on the company's security posture and contribute to a sustainable energy future.

Requirements

• You have in-depth knowledge of security principles and best practices developed over 7+ years of experience
• You’ve managed AWS all the way from security groups to organizations and know the ins and outs of securing AWS infrastructure
• You’re comfortable tackling ambiguous projects that require you to gather information from multiple stakeholders and formulate a clear plan of action
• You like to manage all your infrastructure as code, using tools such as Terraform, CloudFormation, or Ansible
• You understand the security implications of containerized environments such as Kubernetes or ECS, and you know your way around container build processes
• You’re comfortable on the command line, can hack together a decent shell script, and have solid fundamentals of Linux system administration
• You have a good understanding of core networking concepts such as TCP/IP, routing, and DNS, and of network security foundations such as ACLs, firewalls, and TLS
• You have experience administering declarative CI/CD workflows in one tool or another. (We use GitHub Actions.)
• You can write useful Python or another high-level, general-purpose programming language
• You stay on top of industry developments and have a good overall sense of the security solution spaces
• You’re familiar with security management frameworks such as CIS Controls, OWASP, etc

Responsibilities

• Keep raising the bar for EnergyHub’s infrastructure security to ensure customer data remains protected
• Enable our engineering team to be highly productive, safely. Make it easy to do things the right way
• Develop strategy for and participate in EnergyHub maintaining or achieving compliance with various regulatory frameworks such as SOC 2, SOX, ISO 27001, NIST-SP-800, NERC-CIP and others
• Help guide the team in design and implementation of secure cloud infrastructure as we roll out improvements and new features
• Identify and implement new controls to enhance our defense in depth
• ���Shift left” on application and container security by moving security testing farther upstream in the delivery process
• Operate and automate our vulnerability management programs for applications, containers, and VMs
• Manage core security tools and technologies such as SIEM, cloud security posture management, etc
• Play a key role in cross-company security and compliance efforts
• Partner with our parent security team (EnergyHub is an independent subsidiary of Alarm.com) to leverage additional tools and resources and capitalize on our collective strengths

Preferred Qualifications

• You believe in EnergyHub’s mission to empower utilities and their customers to create a carbon-free, distributed energy future
• You love to build secure systems that are easy for other engineers to adopt and use
• You get satisfaction from making things a little bit better each and every day
• You’re excited to join a growing engineering team and help shape its future
• Bonus: you’ve worked on compliance efforts for audit frameworks such as SOC 2 or ISO 27001

Benefits

• 100% paid medical for employees
• 401(k) with employer match
• Casual environment
• The flexibility to set your own schedule
• A fully stocked fridge and pantry
• Free Citi Bike membership
• Secure bike rack
• Gym subsidy
• Paid parental leave
• An education assistance program