Connecting to LinkedIn...

W1siziisimnvbxbpbgvkx3rozw1lx2fzc2v0cy9pbnrlbgxldgvjl2pwzy9iyw5uzxitzgvmyxvsdc5qcgcixv0

Lead Security Engineer | Cloud Platforms | SaaS

Job Title: Lead Security Engineer | Cloud Platforms | SaaS
Contract Type: Permanent
Location: Boston
Industry:
Salary: Up to $190,000
Start Date: ASAP
Duration: Permanent
Contact Name: Kiel O'Mara
Contact Email: kiel@intelletec.com
Job Published: 4 months ago

Job Description

Our client is changing the online payments industry. Their goal is to eliminate fraud all together - they are backed by some of the best investors in Silicon Valley, have huge growth plans and the budget and ambition to match!!

We are looking for a Senior Security Engineer to join a high-pressure, agile environment, protecting critical assets - You will have a real genuine passion for InfoSec and have that real hacker mentality... BREAK THINGS!

 

On offer is a very competitive salary package, excellent benefits and options/equity. The location is within the Greater Boston Area

Role Responsibilities:

  • Assist with day-to-day security engineering requirements - code review, penetration testing, vulnerability management, triaging/resolving open issues
  • Take ownership of threat models, secure software test plans, policy, and procedures for product engineering/testing
  • Deliver hands-on secure code training to the engineering team, when new applications go into production
  • Use scripts to develop tools for automating security testing

 

Experience & Requirements:

  • At least 4 years' experience as a penetration tester, ideally in a team-lead position, overseeing multiple urgent projects simultaneously
  • Experience in secure application programming, code reviewing, and penetration testing web-based application - Mobile testing would be a big advantage
  • Detailed, hands-on experience with industry-leading log management security tools - e.g Splunk
  • Expert in scripting, in multiple languages - Python, Ruby, Perl, Bash
  • At least one active security certification, such as GPEN, OSCP, OSCE, GWAPT, GCIH - an active CISSP would be advantageous