REMOTE - Platform Security Engineer

Apply for this position Please mention DailyRemote when applying
timePosted 5 days ago location United States salarySalary undisclosed
Before you apply - make sure the job is legit.

Attempting to apply for jobs might take you off this site to a different website not owned by us. Any consequence as a result for attempting to apply for jobs is strictly at your own risk and we assume no liability.

Job Description

ZenKey Engineering Security team is looking for an experienced and passionate software security engineer to join a team focused on designing and developing Security solutions to harden our frameworks & infrastructure. We embrace innovation and pave the way to transform bright ideas into excellent security software solutions that help run large-scale, mission-critical software. We encourage you to prescribe defense-in-depth measures, industry security standards, enforce the principle of least privilege to help take our Security posture to the next level. Our Security engineering team has a niche skill-set that combines Security domain expertise with the ability to design, implement and rollout security features and functionalities without adding friction to product functionality or performance. We are responsible for the ever-growing need to improve our customer safety and privacy by providing security services that are coupled with the core ZenKey product. This is a high-impact role in a security-centric, fast-paced organization that is poised for massive growth and success. You will act as a liaison between the Security org and the engineering org to build technical leverage and influence the security roadmap and direction. You will focus on engineering security and privacy aspects of the systems used across our services while working on a weekly release cadence. You will be empowered to propose stimulating new projects for our roadmap and rewarded with projects using emerging technologies. Minimum Requirements• 8+ years of experience in security or technology• Proficient in at least one general purpose programming language (ideally Python)• Experience designing and implementing security solutions for applications and distributed systems.• Experience with intrusion detection, log analysis, and endpoint detection tools• Experience with AWS security, CloudTrail and configuration management• Experience with incident response activities and threat hunting activities Desired Skills• Development work experience and excellent understanding in mitigating OWASP Top 10 attacks on applications, cryptography, key management, PKI, TLS/SSL, DDoS mitigation, authentication, authorization & application security.• Strong understanding of secure engineering concepts such as secure coding practices and secure code reviews and the ability to identify, mitigate and prevent threat vectors.• Excellent grasp of software engineering principles.• Understanding of cloud computing (specifically IaaS) and some key deployment patterns across AWS, GCP, and Azure.• Understanding of SSH/RDP and how engineers access servers. • Understanding the Privileged Access Management market, and how customers are using these products today.• Successful candidate will understand the Risk Management Framework (RMF) and the NIST 800-53 RMF Security Control Catalog