Senior Principal Security Engineer

🕒 il y a 2 mois

🇺🇸 États-Unis – Télétravail

💵 $100 000 - $160 000 / an

⏰ Temps Plein

🟠 Senior

👮‍♂️ Cybersécurité / Ingénieur Sécurité

🦅 Parrain de Visa H1B

Cette entreprise a parrainé des visas H1B par le passé.

Postuler Maintenant

Trouver des Emplois à Distance Similaires

Recevoir des emails pour des emplois à distance

📊 Vérifiez votre score de CV pour ce poste

Améliorez vos chances d'obtenir un entretien en vérifiant votre score de CV avant de postuler.

Télécharger le CV

Saviynt

Site WebLinkedInTous les Emplois

501 - 1000 employés

Fondée en 2010

☁️ SaaS

🔒 Cybersecurity

🏢 Entreprise

💰 €130 000 000 Private Equity Round en 2021-09

SaaS • Cybersecurity • Enterprise

Saviynt est un fournisseur leader de solutions de gestion des identités et des accès (IAM) basées sur le cloud. Leur plateforme, connue sous le nom de Identity Cloud, offre une gouvernance complète des identités, une administration et une gouvernance des accès aux applications. Les solutions de Saviynt mettent l'accent sur la gestion sécurisée des identités, garantissant la conformité, la modernisation des systèmes hérités et le support des environnements multi-clouds. Ils desservent un large éventail d'industries, notamment les soins de santé, les services financiers et le secteur public. En s'appuyant sur l'IA/ML, Saviynt fournit des analyses approfondies pour une sécurité des identités renforcée. Ils sont reconnus pour leurs capacités robustes en gouvernance et administration des identités, aidant les organisations à gérer et protéger efficacement les identités des employés, des sous-traitants, des partenaires et des machines.

Description

• Design and maintain high-fidelity detection rules and analytics across the security stack (SIEM, EDR, CNAPP/CSPM) and cloud environments (AWS, GCP, Azure). • Ability to run vulnerability scans, triage results, establish exploitability of reported vulnerabilities, recommend risk mitigation controls, and deploy controls where needed • Develop and refine automated response playbooks for Incident Response (IR) and orchestration (SOAR). • Lead the evaluation and integration of security technologies, ensuring scalability, resilience, and compliance as it pertains to FedRAMP environments. • Build and maintain our threat detection capabilities, from researching emerging TTPs to writing custom detection logic in our SIEM and EDR platforms. • Respond to alerts and triage findings coordinating across engineering, security, and leadership teams. • Architect and maintain automation to prioritize vulnerabilities (from Code, to Containers, to Cloud) based on risk and exploitability. • Design and lead hunt missions to identify threats that bypass traditional security controls, utilizing advanced forensics and log correlation techniques. • Incorporate industry news, events, IOCs, and other intelligence into our Detection and Response capabilities.

🎯 Exigences

• U.S. Citizenship: Applicants must be United States citizens. • Bachelor's degree or equivalent experience with a minimum of 10 years of experience in Security Engineering, Security Architecture, Federal Security or similar • Knowledge of U.S. Federal Government security compliance, risk management processes and requirements, including NIST RMF and NIST SP 800-53 Rev 5 controls • Experience with vulnerability scanning, remediation, and continuous monitoring (ConMon) • Requires sufficient technical background to be able to interpret audit and compliance requirements, and be able to support basic evidence gathering needs in support of audits • Ability to provide excellent written and oral communications by email, presentations, and mobile communication platforms (including: experience facilitating discussions, briefing senior managers, and conducting project meetings). • Experience with continuous monitoring and Plans of Actions and Milestones (POA&Ms) is a plus • Knowledge of local legal and regulatory security requirements including HIPAA, FedRAMP, and GDPR/privacy • Flexible and collaborative approach to enabling and supporting the business • Meet US persons on US soil requirements • Undergo full background investigation/screening • Undergo IAL3 requirements (Identity proofing to include I-9 document verification, biometric collection, and mailing address confirmation)