Senior Cloud Security Engineer

Posted:
9/18/2024, 11:21:57 AM

Location(s):
Tysons, Virginia, United States ⋅ Virginia, United States

Experience Level(s):
Senior

Field(s):
IT & Security ⋅ Software Engineering

Workplace Type:
On-site

The Senior Cloud Security Engineer will identify security risk in the corporate network, communicate those risks to management and assist with the mitigation efforts.  Common technologies this position will need to work with include vulnerability scanning, intrusion detection, SIEM, database monitoring, and file integrity monitoring. The Senior Security Engineer must have the ability to document policies and procedures and keep them updated according to industry compliance requirements.

Main Responsibilities:

The Senior Cloud Security Engineer primary job responsibilities include:

  • Determine, monitor and maintain our security posture, in collaboration with Engineering.
  • Perform security audits
  • Perform application and infrastructure penetration tests, as well as physical security review and social engineering tests for our global clients
  • Select and acquire additional security solutions or enhancements to existing security solutions to improve overall enterprise security
  • Oversee and manage the deployment, integration and configuration of security solutions and of any enhancements to existing security solutions and the enterprise’s security documents.
  • Develop and maintain threat models for cloud environments and train engineering teams to develop attacker/risk driven design skills
  • Provide deep expertise to engineering teams on SDLC practices including secure design, secure development, secure testing, security runtime for software and firmware development
  • Actively partner with infrastructure, application and other stakeholders to ensure deployed solutions minimize security and privacy risks.
  • Maintain up-to-date knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes and the development of new attacks.
  • Maintain Incident Response Program.
  • Recommend actions/practices to management in order to ensure compliance with security and regulatory requirements in decision-making processes.
  • Suggest actions in order to mitigate risk in any activity that potentially impacts security of existing IT and information management.
  • Craft responses to client and partner security questionnaires
  • Other duties as assigned 

Key Skills and Experience

  • B.A. or B.S. (or higher level degree) in Computer Science or a similar engineering program with strong academic performance preferred
  • 6+ years of information security experience
  • CISSP, CISA, CEH, OSCP or other information security certification
  • Perform security reviews of application designs, source code and deployments
  • Must have knowledge and stay up to date on the latest security advisories, alerts and vulnerabilities.
  • Strong verbal and written communication skills for a highly collaborative environment
  • Rigorous attention to detail and focus on quality of deliverables
  • Familiar with AWS services like EC2 & ECS, WAF & VPC configuration & IAM rules.
  • Familiarity with something like Terraform/CloudFormation.
  • Comfortable with Python and able to read Java when necessary.
  • Proven team experience and comfort in a team-oriented environment
  • Passion for working with technology and excitement for creating high quality consumer technology product

WHY WORK FOR ALARM.COM?

  • Collaborate with outstanding people: We hire only the best. Our standards are high and our employees enjoy working alongside other high achievers.
  • Make an immediate impact: New employees can expect to be given real responsibility for bringing new technologies to the marketplace. You are empowered to perform as soon as you join the Alarm.com team!
  • Gain well rounded experience: Alarm.com offers a diverse and dynamic environment where you will get the chance to work directly with executives and develop expertise across multiple areas of the business.
  • Focus on fun: Alarm.com places high value on our team culture. We even have a committee dedicated to hosting a stand-out holiday party, happy hours, and other fun corporate events.
  • Alarm.com values working together and collaborating in person.  Our employees work from the office 4 days a week.

COMPANY INFO

Alarm.com is the leading cloud-based platform for smart security and the Internet of Things. More than 7.6 million home and business owners depend on our solutions every day to make their properties safer, smarter, and more efficient. And every day, we’re innovating new technologies in rapidly evolving spaces including AI, video analytics, facial recognition, machine learning, energy analytics, and more.  We’re seeking those who are passionate about creating change through technology and who want to make a lasting impact on the world around them. 

For more information, please visit www.alarm.com.

COMPANY BENEFITS

Alarm.com offers competitive pay and benefits inclusive of subsidized medical plan options, an HSA with generous company contribution, a 401(k) with employer match, and paid holidays, wellness time, and vacation increasing with tenure. Paid maternity and bonding leave, company-paid disability and life insurance, FSAs, well-being resources and activities, and a casual dress work environment are also part of our outstanding total rewards package!

Alarm.com is an Equal Opportunity Employer

In connection with your application, we collect information that identifies, reasonably relates to or describes you (“Personal Information”). The categories of Personal Information that we may collect include your name, government-issued identification number(s), email address, mailing address, other contact information, emergency contact information, employment history, educational history, criminal record, and demographic information.  We collect and use those categories of Personal Information about you for human resources and other business management purposes, including identifying and evaluating you as a candidate for potential or future employment or future positions, recordkeeping in relation to recruiting and hiring, conducting criminal background checks as permitted by law, conducting analytics, and ensuring compliance with applicable legal requirements and Company policies.  By submitting your application, you acknowledge that we may retain some of the personal data that you provide in your application for our internal operations such as managing our recruitment system and ensuring that we comply with labor laws and regulations even after we have made our employment decision.

Notice To Third Party Agencies:

Alarm.com understands the value of professional recruiting services.  However, we are not accepting resumes from recruiters or employment agencies for this position. In the event we receive a resume or candidate referral for this position from a third-party recruiter or agency without a previously signed agreement, we reserve the right to pursue and hire those candidate(s) without any financial obligation to you. If you are interested in working with Alarm.com, please email your company information and standard agreement to [email protected].

JR103668