SentiLink is hiring a
Senior Security Engineer

Summary

As a Senior Security Engineer at SentiLink, you will develop, implement, and manage security operations for the company. Responsibilities include designing and implementing security controls, monitoring systems for vulnerabilities, and researching new threats. Requirements include 5+ years of experience in InfoSec or related Software Engineering role, proficiency in cybersecurity technologies, and knowledge of industry standard frameworks. Benefits include employer-paid group health insurance, a 401(k) plan with employer match, flexible paid time off, and regular company-wide events.

Requirements

• 5+ Years in a InfoSec role or related Software Engineering role
• Experience with software development (Python, Golang, Javascript, etc.)
• Experience Engineering cloud-based infrastructure in the AWS environment using Infrastructure as Code (IaC). Terraform experience is a plus
• Proficient in many cybersecurity technologies, IT concepts, strategies and methodologies, as well as security aspects of multiple platforms, operating systems, software, communications and network protocols
• Experience implementing security controls aligned to organizational policies and standards
• Excellent communication skills, including the ability to convey complex security related concepts to technical and non-technical audiences alike
• Knowledge of industry standard frameworks - NIST, ISO, PCI, SOC2
• Experience working in a highly regulated environment is a plus (NIST 800-53, ISO 27001, etc)
• Familiarity working in financial services is a big plus

Responsibilities

• Architects, designs, implements, maintains and operates information system security controls and countermeasures
• Designs, develops, deploys, and operates cloud infrastructure using infrastructure as code and related GitOps tooling
• Performs assessments and improvements to security configurations of various cloud-based Linux servers
• Collaborate with the Infrastructure team to ensure cloud security for promoting DevSecOps and Shift Left
• Monitors information systems for security incidents and vulnerabilities, develops monitoring and visibility capabilities
• Safeguard sensitive information by working with business units and vendors/third parties to determine and enforce appropriate access levels
• Participates in various white hat efforts against SentiLink’s product and corporate infrastructure - including phishing tests, penetration tests, and simulations for disaster recovery and business continuity
• Researches and assesses new threats and security alerts and recommends remedial actions
• Assists with management responses to audit findings, directing remediation, tracking progress and providing status reporting

Benefits

• Employer paid group health insurance for you and your dependents
• 401(k) plan with employer match (or equivalent for non US-based roles)
• Flexible paid time off
• Regular company-wide in-person events
• Home office stipend, and more!