Information Security Engineer

November 26

Apply Now

Receive Emails with Similar Jobs

EverCommerce

WebsiteLinkedInAll Job Openings

SaaS • Software • Services • SMB

1001 - 5000

💰 Private Equity Round on 2019-07

Description

• Security Monitoring and Incident Response: Utilize Elastic SIEM to continuously monitor and analyze security alerts. Respond to incidents swiftly and effectively, implementing corrective actions as needed. • Compliance and Regulatory Standards: Ensure adherence to industry-specific regulations such as HIPAA, PCI-DSS, SOX, and EHNAC by participating in regular audits, implementing compliance-related security measures, and preparing documentation. • Threat Detection and Proactive Security: Use CrowdStrike, Orca, and Elastic SIEM to identify, analyze, and respond to security threats in real-time. Conduct threat hunting activities to proactively seek out malicious activity and vulnerabilities. • Vulnerability Assessment and Penetration Testing: Perform regular vulnerability assessments using Orca, Crowdstrike, and Burp Suite. Report findings, recommend mitigations, and collaborate with development teams to resolve security gaps. • Security Incident Management: Investigate, document, and respond to security incidents and alerts. Coordinate with the IT and Development teams to mitigate any security threats. • Issue Tracking and Project Management: Use JIRA for managing issues, tracking project progress, and ensuring timely resolution of security tasks and incidents.

Requirements

• Education: Bachelor’s degree in Information Security, Computer Science, or a related field, or equivalent experience. • Experience: 3+ years in information security, with a focus on threat detection, incident response, and vulnerability management. • Proficiency in CrowdStrike, Orca Security, Elastic SIEM, and Burp Suite. • Familiarity with compliance standards (HIPAA, PCI, SOX, and EHNAC) and experience supporting audit processes. • Technical Skills: Hands-on experience with vulnerability assessment and penetration testing methodologies. • Strong knowledge of Linux and Windows system administration. • Proficiency in AWS cloud and O365 security practices and administration (preferred). • Beneficial Experience: Experience with JIRA for issue and project tracking. • Soft Skills: Strong problem-solving skills with the ability to prioritize and manage multiple tasks. Excellent verbal and written communication skills for explaining security findings and recommendations. Detail-oriented and proactive, with a passion for staying current on cybersecurity trends and threats.

Benefits

• Flexibility to work where/how you want within your country of employment – in-office, remote, or hybrid • Robust health and wellness benefits, including an annual wellness stipend • 401k with up to a 4% match and immediate vesting • Flexible and generous (FTO) time-off • Employee Stock Purchase Program