Sr. Security Engineer

« Company

Halo Security is seeking an experienced Senior Security Engineer (SSE) for an exciting opportunity to make an impact both internally and externally, influence product decisions, and help clients of all sizes with their security. In this role, you will work with clients to assess their security posture and implement best practices. You'll also work internally with our engineers to manage our products and infrastructure.

We offer several security services including attack surface management, vulnerability scanning, penetration testing and PCI compliance. Halo Security is an Approved Scanning Vendor (ASV) and our SSE will be working with this program closely to ensure that we achieve continued, yearly validation.

Responsibilities

  • Plans and develops security measures to safeguard information against unauthorized modification, destruction, or disclosure.
  • Identify security best practices and apply a risk-based approach to information security.
  • Participate in our yearly approved scanning vendor (ASV) validation process and ensure all validation requirements are met.
  • Collaborate with development and design on improvements and changes to our security products.
  • Work closely with the customer facing teams to ensure prompt resolution on clients' technical requests and requirements.
  • Perform code reviews and help establish and enforce best practices.
  • Diagnose, research, reproduce, and report defects, working closely with our customer facing teams.
  • Engage with clients for high-level security analysis, penetration testing, debugging, and overall security posture from an external perspective.
  • Consult with clients on security hardening, security best practices, and vulnerability remediation.

Requirements

  • 10+ years customer support / helpdesk experience
  • Knowledge of PCI and PCI Requirements
  • Front End and Back End development
    • Java
    • PHP
    • HTML
    • CSS
    • Javascript
    • Common Coding Languages
  • Experience in security auditing / penetration testing
  • CISA, CISM, or CISSP
  • Excellent understanding of the DOM
  • Excellent written and verbal communication skills
  • Understanding of front end security best practices and web application vulnerabilities (SQLi, XSS, CSRF) OWASP
  • Experience and knowledge in the following areas:
    • Network administration, firewall configuration, and strong knowledge of TCP/IP
    • Amazon Web Services
    • Linux/Unix administration and system configuration
    • Windows and/or Mac OS administration and system configuration
    • Qualys and/or other vulnerability management or cyber security tools

We Offer

  • Competitive salary and benefits
  • Fully remote opportunities
  • Optimal work-from-anywhere experience—we’ll send you whatever tools you need to succeed!
  • Surprise gift program each quarter

About Halo Security

At Halo Security, a TrustedSite brand, our mission is to help organizations protect data from external attackers and earn trust with their customers. Our attack surface management, penetration testing and vulnerability scanning solutions help thousands of organizations secure their most critical assets.

Apply

To apply for this position, please email your resumé to careers@halosecurity.com.