Staff Security Engineer

Summary

Join Multi Media, LLC's expanding Security team as a Staff Security Engineer. Lead the design and implementation of robust security frameworks and controls to protect company assets and ensure end-user trust. Proactively identify and mitigate security risks through design reviews, threat modeling, and vulnerability remediation. Respond to and learn from security incidents. Collaborate with cross-functional teams and contribute to strategic cybersecurity decisions. Shape cybersecurity functions and protect all aspects of Multi Media’s information security program. This role offers a dynamic environment where your expertise will directly influence the company's security posture.

Requirements

• 7+ years of experience in cybersecurity, encompassing security engineering and related technical domains
• Strong expertise with information security incidents and threat assessments
• Experience in application security vulnerability triage and the implementation of mitigating controls
• Knowledge of log analysis and forensics across disparate systems and environments
• High Proficiency in one modern programming language (e.g., Python, Go)
• Strong understanding of public cloud environments, such as GCP and AWS
• Knowledgeable in standard compliance and control frameworks, such as PCI-DSS, NIST-CSF, and ISO-27001
• Possess a strong drive for innovation, coupled with a curious mind and a deep passion for cybersecurity

Responsibilities

• Identify security issues, implement and design security controls, tools, and services to improve security systems and processes
• Collaborate with product and engineering teams to conduct product security assessments during the design phase, including rapid threat modeling and architecture analysis to proactively identify and prioritize security risks, ensuring timely feedback
• Bring an offensive security mindset with experience in identifying and remediating application vulnerabilities within code
• Research novel security threats and vulnerabilities to the business, offering recommendations to the organization and contributing to the evolution of our security team's expertise
• Develop new security standards and playbooks
• Lead and execute incident response simulations, including tabletop exercises and red/blue team engagements
• Provide guidance and mentorship to other security engineers within the team

Preferred Qualifications

• Bachelor’s degree or equivalent practical experience
• Advanced cybersecurity certifications (e.g., SANS GIAC, Offensive Security, ISC2)
• Offensive Security or Pentesting Experience

Benefits

• Fair and competitive base salary
• Fully Remote Optional
• We share success—our bonus program scales with company performance, offering up to 20-30% in achievable bonuses, with potential for 90%!
• Health, Vision, Dental, and Life Insurances for you and any dependents, with policy premiums covered by the Company
• Long & Short term disability insurance
• Unlimited PTO
• Annual Year-End Company Closure
• Optional 401k with 5% matching
• 12 Paid Holidays
• Paid Lunches in-office, or if Remote, a $125/week stipend via Sharebite
• EAP and Employee Recognition Programs