Security Engineer

🕒 il y a 3 mois

Postuler Maintenant

Trouver des Emplois à Distance Similaires

Recevoir des emails pour des emplois à distance

📊 Vérifiez votre score de CV pour ce poste

Améliorez vos chances d'obtenir un entretien en vérifiant votre score de CV avant de postuler.

Télécharger le CV

Menlo Security Inc.

Site WebLinkedInTous les Emplois

201 - 500 employés

🔒 Cybersecurity

🏢 Entreprise

💰 €100 000 000 Series E en 2020-11

Cybersecurity • Enterprise

Menlo Security Inc. est une entreprise de cybersécurité spécialisée dans la fourniture de solutions avancées de sécurité internet pour les entreprises. Ils se concentrent sur la sécurisation des navigateurs à travers des environnements d'entreprise hybrides afin de prévenir les attaques de phishing et les logiciels malveillants. Menlo Security propose une solution de sécurité des navigateurs basée sur le cloud qui transforme n'importe quel navigateur en un navigateur d'entreprise sécurisé, aidant les organisations à se protéger contre les menaces très invasives et adaptatives, le phishing de la première heure et les rançongiciels. Leur architecture d'accès Zero Trust permet une utilisation sûre d'internet et un accès sécurisé aux applications, soutenant plus de 800 clients dans le monde, y compris des institutions financières et des agences gouvernementales.

Description

• Multi-Cloud Governance (AWS & GCP): Deploy and manage Cloud Security Posture Management (CSPM) tools to automatically detect and remediate misconfigurations across both providers. • Container Security Lifecycle: Implement Cloud Native Application Protection Platform (CNAPP) strategies by shifting left and integrating container image scanning directly into Jenkins and GitLab pipelines. • Workload Protection: Deploy and tune Cloud Workload Protection Platform (CWPP) tools to monitor runtime behavior and detect anomalies in both VMs and Kubernetes pods. • Advanced Automation & SOAR: Build Automated Response Playbooks to automatically enrich alerts, isolate compromised resources, and dismiss low-fidelity noise without human intervention. • Infrastructure Review & Identity: Manage effective permissions across complex multi-cloud IAM structures and standardize secret management workflows. • Release Readiness & Customer Trust: Collaborate closely with Technical Program Managers (TPMs) during software releases to enforce compliance standards and oversee vulnerability scanning. Additionally, respond to customer inquiries regarding the impact of Common Vulnerabilities and Exposures (CVEs) on our product.

🎯 Exigences

• Multi-Cloud Fluency: Deep architectural understanding of GCP and AWS, with the ability to manage complex IAM policies, standardizing identity, and securing networking layers across both providers. • Security Automation: Proficiency in Python, Go, or Bash to write custom scripts that eliminate toil, build auto-remediation playbooks, and streamline security operations. • Infrastructure as Code (IaC): Experience developing secure Terraform modules and primitives for the organization to stem from, ensuring security defaults are baked into the architecture and catching misconfigurations before deployment. • Developer Enablement: Design and maintain shared CI/CD security components (SAST/SBOM/Container Scanning) that are easily adoptable by engineering teams with minimal friction. • Container Security: Proven experience securing managed (EKS, GKE) and unmanaged container workloads, with a strong emphasis on automating runtime defenses and admission controllers. • Pragmatic Mindset: The ability to operate pragmatically within a lean team, knowing how to prioritize risk based on runtime context and business impact rather than just chasing scanner outputs. • Privileged Access Management: Proven ability to implement and manage Just-In-Time access policies to replace manual ticket and eliminating standing privileges. • Federal Compliance & Citizenship: Due to the role’s involvement in federal compliance activities, the candidate is required to be a US citizen.

🏖️ Avantages

• All employees may be eligible to become Menlo Security shareholders through eligibility for stock-based compensation grants, which are awarded to employees based on company and individual performance.