Senior Engineer - Security Risk

5 days ago

🌲 North Carolina – Remote

Although this job is listed in North Carolina, this company may be open to hiring remote in other states.

⏰ Full Time

🟠 Senior

👮‍♂️ Security Engineer

Apply Now

Receive Emails with Similar Jobs

Brightspeed

WebsiteLinkedInAll Job Openings

Brightspeed is a fiber internet service provider that offers high-speed internet plans with no annual contracts or termination fees. They offer a variety of plans, including a 2 Gig plan for effortless streaming, gaming, video calling, and uploading and downloading, a 1 Gig plan for multiple high-bandwidth users, a 500 Mbps plan for HD streaming and competitive gaming, and a 200 Mbps plan for small households. Brightspeed emphasizes providing fast and reliable internet with transparent pricing, and they are focused on expanding connectivity to underserved areas. They offer special promotions such as three months of free service for new fiber customers.

High-Speed Fiber and Fiber Broadband

1001 - 5000 employees

Founded 2022

📡 Telecommunications

💰 $500M Private Equity Round on 2023-05

📋 Description

• Lead security initiatives to improve and mature the security posture and compliance across all business units • Own the logical and analytical process of identifying risk, assessing risk, and taking steps to reduce risk to an acceptable level • Perform comprehensive risk assessments to identify vulnerabilities and potential threats across the organization's systems, applications, and networks • Review system designs, application architectures, and code to identify security weaknesses and provide recommendations for improvement • Collaborate with application development teams and review code for security issues, ensure the secure coding standards and best practices • Utilize static and dynamic analysis tools to assess the security posture of software code • Create detailed threat models to understand potential attack vectors and prioritize security controls based on risk levels • Design and implement security architectures to protect sensitive data, including access controls, encryption, and data protection mechanisms • Identify critical vulnerabilities, prioritizing remediation efforts and driving SLA • Prepare and present risk assessment reports, security metrics, and executive summaries to stakeholders • Communicate complex security risks in a clear and concise manner • Create and maintain security policies and procedures aligned with industry best practices and regulatory requirements • Ensure adherence to relevant security regulations, industry standards, internal policies and standards, and data privacy laws • Educate employees on security best practices and awareness of potential threats • Guide and mentor security engineers and architects on security principles and practices • Collaborate with internal stakeholders, to ensure security risk management and governance strategies are integrated into business operations

🎯 Requirements

• Bachelor’s Degree in Cyber Security, Computer Science, or directly related field • 7+ years of experience in Cyber Security • Excellent communication and collaboration skills • Broad knowledge and experience in all eight cyber security domains • Experience developing and implementing security policies, procedures, and standards • Knowledge of relevant regulations and standards, such as NIST, SOX, and PCI • 5+ years in a variety of telecommunications and IT roles • Experience leading security risk assessments, threat modeling, developing risk treatment plans, and developing risk management frameworks • Strong technical IT and Network background

🏖️ Benefits

• Comprehensive medical, dental, vision, and life insurance • Employee assistance program • 401K plan with company match • Voluntary benefits