Senior Information Security Engineer


Senior Information Security Engineer


Our client; a global leader in providing trusted analytics & insights to accelerate the pace of innovation are transforming how their shared services technology will service business strategies going forward. Because of recent exceptional high growth and funding, they now require a Senior Information Security Engineer to join their team in to plan and deliver an exciting new roadmap of exciting & challenging projects.


The ideal candidate will become a key member either in Philadelphia or San Francisco to assist in building their ISRM roadmap and run security capabilities. They must have experience in Cyber Threat, Vulnerability and Incident Response Management & come from a cloud-based environment.


  • Provide security advisory services support by recommending improvements in information security systems, procedures and processes 

  • Define requirements, based on the overall information security strategy, and implement capabilities to comply with established standards to help mitigate security risks

  • Provide responses to customer security questionnaires and internal and external auditors regarding information security capabilities and controls

  • Monitor for security incidents and participate in incident response teams to contain, investigate, and prevent future information security incidents

  • Design, implement and test information security controls in enterprise, cloud, and product environments

  • Create and champion information security policies, standards, guidelines, and standard operating procedures

  • Understand current and emerging security threats and design security capabilities to mitigate threats where possible

  • Stay abreast of new security technologies and integrate them into the security architecture design where appropriate

  • Analyze IT projects and roadmaps and identify security dependencies and risks, and design solutions to remediate information security risks

  • Manage all information security capabilities including threat management, vulnerability management, and incident management

  • Participate in internal Blue and Red Team activities




  • A minimum of 7 years of hands-on technical experience designing, implementing, and supporting information security solutions in enterprise and cloud environments

  • Strong, customer-oriented communication style with the ability to collaborate across a global team environment

  • Advanced analytical and decision-making skills

  • Experience working in or with lean, agile, or DevOps-oriented teams

  • Expert-level knowledge of security principles and technologies in application, infrastructure, network, cloud and endpoint security

  • Experience working with security vendors to evaluate products, analyze security functionality and submit feature requests

  • Experience with Linux, Windows and Mac OS X operating systems

  • Fluent in one of the following and experienced in two: Java, Javascript, Python, AngularJS, Ruby, Shell, C++, C#, .NET, PHP, SQL 

  • Expert level understanding of source control tools, CI/CD & AWS platform

  • Strong self-directed work habits exhibiting initiative, drive, creativity, maturity, self-assurance, professionalism and the ability to autonomously manage multiple concurrent projects

  • Previous consulting or sales engineering experience is ideal

  • Bachelor’s degree (Master’s degree is ideal) in computer science or equivalent experience

  • CISSP or SANS GIAC certification



  • Experience in Incident Response activities in addition to general information security duties. Certification such as CISSP

  • Minimum 7 years which includes Applications Security

  • Background working in a cloud environment

  • Experience with scripting languages

Nice to have: 

  • Experience with code scanning tools
  • Member of OWASP