Fulltime Cloud Security Analyst openings in Los Angeles on September 12, 2022

Cyber Security Identity and Access Management Experienced Associate at Grant Thornton LLP

Location: Los Angeles

Job title: Cybersecurity and Privacy Associate

Job description:

As a Cybersecurity and Privacy Associate, youll work closely with the Cyber Risk team on all phases of the engagement lifecycle including planning, engagement management, and project wrap up all with the resources, environment, and support to help you excel.

Our Cybersecurity & Privacy practice offers an opportunity for you to leverage your technology background and experience to broaden your business and project management skills in a rewarding and challenging environment. Individuals will work on projects across our portfolio of Cybersecurity & Privacy and will assist in the development of cyber risk strategies, identity and access management programs, network security, cyber security analytics, ethical hacking, cloud security, privacy & data protection, blockchain, etc.

From day one, youll be empowered to actively contribute to business growth by identifying business development opportunities, participating in marketing and brand initiatives, and assisting with the development of Grant Thornton thought leadership.

Your day-to-day may include:

Ethical Hacking

Cyber threat monitoring

Cloud Security

Identity and Access Management

Privacy and Data Protection

Cyber Incident Management

Cyber War Gaming

Cyber Strategy and program design

Cyber Security within blockchain, RPAs, IoT

Secure code design

Business Strategy and Cyber strategy alignment

Working at a client site, with your team in the office or remotely. We empower teams to listen first to expectations of clients and teammates; then you and your team can determine when and where to work. No matter when or where, you will have the support you need to thrive.

Other duties as assigned

You have the following technical skills and qualifications:

B.S. in Engineering within computer science, electronics, electrical, mechanical, or information systems

B.S. program in Data analytics, Informatics, Management with Cybersecurity (minor)

B.S. program with a specialization in Technology Hands on technology experience

B.S. program in Data Analytics with specialization in Blockchain, Cyber Security, RPA, Crypto

B.S. in Information Security

Optional Juris Doctorate (J.D.) degree with interest in Cyber

Overall GPA of over 3.0 out of 4.0

Ability to travel 60%-100% as required

Strong business and technical aptitude and problem-solving skills

Likes to learn the business of our clients to help them solve problems

Ability to bridge the gap between business strategy and cybersecurity/technology to help deliver sustainable solutions to our clients

Excellent thinking, analytical, communication (written and verbal) and interpersonal skills

Effective time management skills for handling multiple priorities and simultaneous projects

Enthusiasm to learn through a combination of structured, on-the-job and self-directed training

Ability to work efficiently and effectively in a team environment

About Us

At Grant Thornton, we believe in making business more personal and building trust into every result for our clients and you. Here, we go beyond your expectations of a career in professional services by offering a career path with more: more opportunity, more flexibility, and more support. Its what makes us different, and we think being different makes us better.

About the Team

The team youre about to join is ready to help you thrive. Heres how:

Whether its your work location, weekly schedule or unlimited flex time off, we empower you with the options to work in the way that best serves your clients and your life.

Here, you are supported to prioritize your overall well-being through work-life integration options that work best for your and those in your household.

We understand that your needs, responsibilities and experiences are different and we think thats a good thing. Thats why we support you with personalized and comprehensive benefits that recognize and empower all the identities, roles and aspirations that make you, well, you. See how at www.gt.com/careers

When it comes to inclusion, we are committed to doing more than checking boxes. Explore all the ways were taking action for diversity, equity & inclusion at www.gt.com/careers

Heres what you can expect next:

If you apply and are selected to interview, a Grant Thornton team member will reach out to you to schedule a time to connect. We encourage you to also check out other roles that may be a good fit for you or get to know us a little bit better at www.gt.com/careers.

Additional Details:

Grant Thornton requires personnel to be fully vaccinated against COVID-19 or self-test negative for COVID-19 within a specified timeframe in order to visit/enter firm offices, to visit/enter client or prospective client sites or facilities, or to attend in-person firm or client-sponsored events, subject to any medical, religious or other accommodations under the law. Grant Thornton collects, uses and maintains vaccination-related data in accordance with its Privacy Policy, Personnel Privacy Notice, and applicable laws and regulations.

It is the policy of Grant Thornton to promote equal employment opportunities. All personnel decisions (including, but not limited to, recruiting, hiring, training, working conditions, promotion, transfer, compensation, benefits, evaluations, and termination) are made without regard to race, color, religion, national origin, sex, age, marital or civil union status, pregnancy or pregnancy-related condition, sexual orientation, gender identity or expression, citizenship status, veteran status, disability, handicap, genetic predisposition or any other characteristic protected by applicable federal, state, or local law.

Consistent with the Americans with Disabilities Act (ADA) and applicable state and local laws, it is the policy of Grant Thornton LLP to provide reasonable accommodation when requested by a qualified applicant or employee with a disability, unless such accommodation would cause an undue hardship. The policy regarding requests for reasonable accommodation applies to all aspects of employment, including the application process. To make an accommodation request, please contact [Email available when viewing the job].

For Los Angeles Applicants only: We will consider for employment all qualified Applicants, including those with Criminal Histories, in a manner consistent with the requirements of applicable state and local laws, including the City of Los Angeles Fair Chance Initiative for Hiring Ordinance.
Apply Here
For Remote Cyber Security Identity and Access Management Experienced Associate roles, visit Remote Cyber Security Identity and Access Management Experienced Associate Roles

********

Cloud Security Architect at Motion Recruitment

Location: Los Angeles

A dynamic technology consulting company is hiring a Cloud Security Architect. This role will be responsible for working in various areas of client business, like networking, compute, storage, and information security. They””re open to candidates with extensive experience in any public cloud environment, as well as have experience with Terraform or cloud native scripting languages.

An ideal candidate will be familiar with cloud provider””s Command Line Interface (CLI) and will know how to invoke APIs in languages like Python. This is a great opportunity to continue your Cloud Security career with a company that is regularly rated as one of the tops places to work.
Required Skills & Experience
• 8+ years relevant experience
• Strong Cloud Environment Experience (AWS, Google Cloud Platform, or Azure)
• Knowledgeable in security, DNS, IAM
The Offer
You will receive the following benefits:
• Medical Insurance
• Dental Benefits
• Vision Benefits
• Paid Time Off (PTO)
• 401(k) with a match

Applicants must be currently authorized to work in the US on a full-time basis now and in the future. – provided by Dice
Apply Here
For Remote Cloud Security Architect roles, visit Remote Cloud Security Architect Roles

********

Security Engineer at VARITE INC

Location: Los Angeles

Job Title: Business Analyst

Location: Remote

Job Description

Position Description: A Business Analyst is familiar with a range of digital/web services and solutions, ideally where open source and cloud technologies and various development methodologies have been applied; has an eye for detail, excellent communication skills, and ability to rationalize complex information to make it understandable for others to work; and ability to interrogate reported information and challenge sources where inconsistencies are found. The Business Analyst will support agencies by analyzing propositions and assessing decision-making factors such as strategic alignment, cost/benefit, and risk; work closely with the Product Manager to define a product approach to meet the specified user need; define skill requirements and map internal, agency, and external (partners/specialist contractors) resources; work with the owning agency to ensure they have the budget to cover the proposed approach and resource requirements during delivery and analyze what provision they have for ongoing running costs; analyze and map the risks of this product approach and propose mitigation solutions; define how the predicted user and financial benefit can be realized, and how channel shift will be measured; and make a recommendation for action against the analysis done.

Skills Required: The Business Analyst will possess knowledge and experience in ensuring enhanced processes and services are technically, operationally, and legally supported by analyzing and compiling business requirements and solidifying successful implementation; strengthening risk mitigation techniques and improved process efficiencies while meeting stringent regulatory requirements; developing, coordinating, and implementing methodology and scope for multiple complex projects; strong analytical and research techniques to identify gaps and inconsistencies within current measurement tools, allowing development of improved and cost-effective business models; and performing requirements analysis, documentation and quality assurance for each deliverable.

Skills Preferred: Ability to facilitate requirements gathering with business stakeholders including documenting of user stories to define the requirements, analyze workflows, and provide solutions for process improvements to business users. A strong aptitude for CRM development and platform and have strong technology skills, and communication skills are essential in this role to share findings based on analysis with stakeholders in a meaningful way. Ability to perform Quality Assurance (QA) testing, as needed and work with QA Team and business users on User Acceptance Testing.

Experience Required: This classification must have a minimum of five (5) years of experience applying analytical processes on IT projects. At least three (3) years of that experience must have been in business systems analysis and design.

Experience Preferred: Candidate have at least 2 years of work experience, ideally in Microsoft Dynamics 365 pertaining to CRM software, and some experiences with Teams Foundation Server (TFS) or Azure DevOps platform.

Education Required: This classification requires the possession of a bachelor’s degree. Additional qualifying experience may be substituted for the required education on a year-for-year basis.
Apply Here
For Remote Security Engineer roles, visit Remote Security Engineer Roles

********

Senior Security Analyst/SIEM at Motion Recruitment

Location: Los Angeles

An expansive education non-profit is seeking a Senior Security Analyst in a hybrid role. They are providing improved networks for California, expanding the interconnectivity of the education system across the state. They supply 20 million users a high-capacity network from kindergarten all the way through to the University level. This rewarding opportunity would have you actively assisting our crucial education systems that is one of the largest in the world.

As the Sr. Security Analyst, you would be responsible for seeking and identifying threats with their proprietary network monitoring systems and SIEM services. Responsible for monitoring and responding to security alerts, this includes data protection, incident response, vulnerability management, network security monitoring, malware defense, and security awareness training.
Required Skills & Experience
• 7 years of experience in information security, cyber security, or network security engineering, the design, deployment, and implementation of security solutions. This includes continuous monitoring and making improvements to those solutions, working with an information security and security operations team.
• 4 years of experience running and supporting security information and event management (SIEM) services
• 4 years of experience running and supporting vulnerability management services
Desired Skills & Experience
• 4 years of experience maintaining and administering production Unix/Linux operating systems including RedHat/CentOS and FreeBSD variants
• Bachelor””s degree in Cybersecurity, Information Assurance, or related field
• Experience implementing industry security standards, such as ISO 27001, NIST SP800-53, NIST Cybersecurity Framework, or the Center for Internet Security (CIS) Critical Security Controls
• Experience configuring and supporting security orchestration and automated response (SOAR) services
• Experience programming in C, C++, Python, Ruby, or other popular languages
The Offer
• Bonus OR Commission eligible

You will receive the following benefits:
• Medical Insurance
• Dental Benefits
• Vision Benefits
• Paid Time Off (PTO)
• 401(k) {including match- if applicable}

Applicants must be currently authorized to work in the US on a full-time basis now and in the future. – provided by Dice
Apply Here
For Remote Senior Security Analyst/SIEM roles, visit Remote Senior Security Analyst/SIEM Roles

********

Terrific Senior Security Engineer Role at Motion Recruitment Partners LLC

Location: Los Angeles

• This cutting-edge telecommunications company is hiring for a Senior Information Security Engineer.
• This opportunity is fully remote, candidates must live in one of the following states: AZ, CA, CO, DC, FL, GA, IL, MD, MI, MN, NC, NJ, NV, NY, OR, PA, TN, TX, UT, VA, WA, WI. The security team must grow as they protect the latest technology in communications.
• Their cloud framework is based in AWS, they need someone will all around security experience in EDR, risk assessment, familiarity with a SOC environment, and SIEM services.
• As this would be a senior role, candidates would be expected to support the security team as well as the company’s teams.
• Bonus OR Commission eligible
• Paid Time Off (PTO)
• 401(k) {including match- if applicable}
• Applicants must be currently authorized to work in the US on a full-time basis now and in the future.
Apply Here
For Remote Terrific Senior Security Engineer Role roles, visit Remote Terrific Senior Security Engineer Role Roles

********

REMOTE Security Engineer at CyberCoders

Location: Los Angeles

If you are a REMOTE Security Engineer with experience, please read on

We are one of the countries leaders in providing commercial off the shelf software solutions for all levels government agencies.

Looking to add a Security Engineer to our growing team

What You Will Be Doing

As a Security Engineer, you will help identify threats and vulnerabilities in our systems and software and help ensure our environment is secure.
• Collaborate with the FHS Team
• Catalyze security improvements based on risk
• Investigate technologies that could qualitatively improve security posture
• Develop and deploy tools and/or new processes to assist in modeling, analysis, detection, and prevention of security threats
• Stay up to date on current security events and articles for any developments that would impact or be a potential threat to the FHS environment, policies, or software.

What You Need for this Position

Required Skills And Experience

Experience running incident response processes and/or incident response playbooks

Exposure to cloud and implementing security in AWS, Azure, or other cloud technologies

Fundamental understanding of network protocols; including the TCP/IP stack as well as TLS, DTLS, and UDP based protocols

Experience in at least one of the following disciplines: red teaming, blue teaming, implementing advanced security technologies, or software engineering

Excellent communication skills, both written and verbal

Ability to establish and maintain good professional relationships

Bachelor’s in computer science or related technical discipline; or equivalent experience in software/hardware security

Ability to work both with little supervision and in a team

Desire and ability to ramp up quickly on new technologies

Desired Skills And Experience

Experience identifying and mitigating a range of security vulnerabilities via automated vulnerability management tools

Expertise in cloud and implementing security in AWS, Azure, and other cloud technologies

Experience designing and implementing security solutions for operating systems, distributed systems, and cloud-based environments

Ability to analyze and knowledge of best practices for secure network architecture and communications protocols

Security expertise in: Python, Java, C++, cryptography, exploit development

Security by design with Embedded Software

Experience in navigating large, complex, interactive and/or distributed systems

Experience With Fuzzing, Buffer Overflows, And Other Common Exploits

Experience with security technologies such as AV, EDR, SIEM, MFA, SSO, etc.

What’s In It for You

Salary $120K-$160K

$20,000 deposited into your Fast Service Reward Account (FSRA) on first day of employment. 25% of your FSRA balance to be paid to you in December each year. Payout is pro-rated based on start date.

” Your first forty (40) hours of bonus time will go into a bonus time bank. You have the option of converting the hours to vacation or taking them as pay.

” Ten (10) days of vacation per calendar year (begin accruing on first day of employment).

” Ten (10) days of sick leave per calendar year (pro-rated based on start date).

” Paid statutory holidays per annum, based on your primary work location/site.

” FAST Pause: Once every four (4) years, 4 consecutive weeks of paid time off to pursue your passions.

” Enrollment in our comprehensive insurance package consisting of: medical, dental, vision, FSA, life insurance, AD&D, short-term disability, long-term disability, and 401(k) benefit plans.

So, if you are a REMOTE Security Engineer with experience, please apply today

Colorado employees will receive paid sick leave. For additional information about available benefits, please contact Sean Westhorpe

Email Your Resume In Word To

Looking forward to receiving your resume through our website and going over the position with you. Clicking apply is the best way to apply, but you may also:
• Please do NOT change the email subject line in any way. You must keep the JobID: linkedin : SW5-1704052 — in the email subject line for your application to be considered.***

Sean Westhorpe – Recruiter – CyberCoders

Applicants must be authorized to work in the U.S.

CyberCoders, Inc is proud to be an Equal Opportunity Employer

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected veteran status, or any other characteristic protected by law.

Your Right to Work – In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification document form upon hire.

CyberCoders will consider for Employment in the City of Los Angeles qualified Applicants with Criminal Histories in a manner consistent with the requirements of the Los Angeles Fair Chance Initiative for Hiring (Ban the Box) Ordinance.
Apply Here
For Remote REMOTE Security Engineer roles, visit Remote REMOTE Security Engineer Roles

********

SIEM Engineer at Splunk

Location: Los Angeles

• Join us as we pursue our disruptive new vision to make machine data accessible, usable and valuable to everyone.
• We are a company filled with people who are passionate about our product and seek to deliver the best experience for our customers.
• At Splunk, we’re committed to our work, customers, having fun and most importantly to each other’s success.
• Learn more about Splunk careers and how you can become a part of our journey Splunk’s IT-CICD team is responsible for enabling Development teams to move code faster and with less friction to production.
• This responsibility is supported by developing automated build and release pipelines, supporting testing frameworks, building artifact management services, and fast feedback systems.
• Whether it’s containers or VMs, we’re at the center of building and releasing code with our customers.
• The result is automated code delivery, fast time-to-market, and increased business value.
• We are actively seeking an Application Security (AppSec) Engineer to join our team.
• You will be responsible for engaging with IT teams to ensure security is a first priority when developing services.
• You will also ensure we’re in lock step with Splunk’s larger security initiatives and develop our CICD security services.
• Engaging with other teams and communicating with stakeholders will be a regular part of the job.
• We’re looking for an individual who’s motivated by technology, enjoys automation, and problem-solving.
• Responsibilities Development of Release Management strategies for various architectures; Zero Downtime Deployments, Blue-Green, Canary Releases, etc.
• Experience with security event management, vulnerability management, intrusion detection, and threat management systems (Azure Sentinel, Splunk).
• In depth experience with configuring continuous integration software in a globally distributed environment using tools like GitLab, CircleCi, Jenkins, A, Azure DevOps Pipelines, etc.
• Solid experience with scripting languages such as Python, Ruby, or Golang Proven expertise with container technology such as Docker, LXC, and Kubernetes You have strong grasp of the SDLC Solid understanding of cloud computing – AWS, GCE, Azure, etc.
• Familiarity with progressive deployment models and developer feedback loops Working knowledge of Networking concepts and their application in the cloud And of course, a passion for security and release engineering What We Offer You: Wow, I want that.
• A constant stream of new things for you to learn.
• We’re always expanding into new areas, bringing in open source projects and contributing back, and exploring new technologies.
• A set of extraordinarily hardworking, innovative, open, fun and dedicated peers, all the way from engineering and QA to product management and customer support.
• Growth and mentorship.
• We believe in growing engineers through ownership and leadership opportunities.
• We also believe mentors help both sides of the equation.
• A stable, collaborative and supportive work environment.
• We value diversity at our company.
• All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or any other applicable legally protected characteristics in the location in which the candidate is applying.
• For job positions in San Francisco, CA, and other locations where required, we will consider for employment qualified applicants with arrest and conviction records.
• (Colorado only) Minimum base salary of $115,000.00.
• You may also be eligible for incentive pay equity benefits.
• Note: Disclosure per sb19-085 (8-5-201 et seq).
• Thank you for your interest in Splunk
Apply Here
For Remote SIEM Engineer roles, visit Remote SIEM Engineer Roles

********

Sr. IT Security Risk Analyst (Hybrid Remote) – Hiring Immediately at University of California – Los Angeles Health

Location: Los Angeles

Responsibilities

As a key member of our IT Risk team, the Sr. IT Security Risk Analyst will collaborate with the Health Science IT community and leadership to conduct comprehensive analysis of highly complex on premise and cloud-based IT infrastructure, systems and applications to identify and classify potential and actual risk to data, business and IT infrastructure. You will apply advanced, broad knowledge of an array of technologies including high performance, distributed, network and web computing environments which supports clinical, academic, research, and administrative functions within Health Sciences. You will:
• Conduct detailed risk assessments, including meeting with clients and vendors, to ensure all projects and initiatives meet all UCLA Health Sciences compliance policies, standards and procedures as well as HIPAA Compliance, and all other government and medical agencies regulations.
• Recommend remediation strategies including risk-based prioritization of action items and identification of mitigating controls; as well as evaluate, develop and recommend new information security assessment tools/techniques
• Work to maintain and enhance the IT Risk GRC solution and update/improve upon UCLA Health Sciences Security risk assessment process for UCLA Health Sciences.
• Contribute to and develop best practices, strategies, methodologies and documentation/templates suitable for use by other team members
• This is a three year contract appointment eligiblefor benefits. In addition to a great benefit plan, UCLA Health offers professional development opportunities. To learn more, visithttps://ucnet.universityofcalifornia.edu/compensation-and-benefits/index.html. Note: Contract Appointments may convert to career*

Qualifications
• Bachelor’s degree in Computer Science, Engineering, Information Systems (or similar) OR 5+ years of relevant professional experience in Information Security or IT Risk Management, preferably in healthcare
• Relevant information security certifications preferred (e.g., CISSP, CISA, CISM, CRISC, or GIAC)
• Proficient knowledge of hardware/software architecture and domains in IT operations with a focus on governance, risk and compliance.
• Ability to understand large, complex systems.
• An understanding of communications and network vulnerabilities.
• Knowledge of personal computer and mobile architectures, OS and applications.
• Analytical ability to focus on specific details or subsystems, their vulnerabilities and linkages.
• Experience with GRC (Governance, Risk, and Compliance) solutions
• Experience with IT audits.
• Project management skills, with risk management.
• Understanding of legal and regulatory compliance standards and requirements against data and IT, including HIPAA, FERPA, Payment Card Industry Data Security Standard (PCIDSS), ISO27001, NIST and COBIT.
• Knowledge of products which protect systems, such as Intrusion Prevention Systems (host- and network-based), Firewalls, Security Event Management Systems, port scanning and vulnerability identification, monitoring and logging mechanisms, etc.
• Familiarity with multiple software types at the application and enterprise levels.
• Demonstrated skill in establishing and maintaining cooperative working relationships.
• Possess the verbal and written communication skills to work effectively with technical and non-technical personnel at various levels in the organization; ability to use standard English grammar and punctuation.
• Proficient in Microsoft Office product suite (MS Outlook, Word, PowerPoint, and Excel)
• An inquisitive, or problem-solving, mindset.
• A strong sense of customer service and attention to detail
• Ability to work independently, setting goals and priorities.
• Confidence to follow-up and champion critical findings, follow through and deliver timely results.

UCLA is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status.
Apply Here
For Remote Sr. IT Security Risk Analyst (Hybrid Remote) – Hiring Immediately roles, visit Remote Sr. IT Security Risk Analyst (Hybrid Remote) – Hiring Immediately Roles

********

Analyst, Analytics at GroupM

Location: Los Angeles

THE ROLE:

As an Analyst within the Analytics team, you will be responsible for digital analysis & support for Xaxis’ programmatic advertising campaigns.

You will leverage multiple measuring & reporting platforms to conduct analysis and data evaluation to help drive the success of our online campaigns.
YOUR IMPACT:
• Use your technical understanding of programmatic buying, audience buying, and DSPs to provide complete strategic recommendations to ensure successful optimization of campaigns through the effective understanding of client objectives.
• Creating and maintain dashboards for all clients within Datorama.
• Analyze campaign objectives and performance data to identify new opportunities for measurement and analytics solutions.
• Develop customized reports to track and optimize campaign performance.
• Manage the performance and pacing reporting for multiple stakeholders throughout the organization.
• Through the use of reporting, perform QA testing to ensure tags are function properly.
• Develop and deliver insights/analytics presentations across multiple accounts under the leadership of senior analytics & account staff.
• Draw on expertise of functional experts to continually develop skills and capabilities.
• Manage project execution while being mentored on best practices.
YOUR QUALIFICATIONS:
• Bachelor’s degree in Marketing, Advertising, Economics, Computer Science, Information Systems, Business Analytics, or related field.
OR equivalent professional work experience
• 1 years’ relevant work experience (digital media experience desired)
• Proficiency in Excel with the ability to review, analyze and present advertising reporting
• Excellent interpersonal and communication skills
• Prior experience with relevant start-ups, DSPs, agencies, and trading desks preferred
• Understanding of online marketing and web metrics preferred
Nice to have but not required:
• Understanding of SQL a plus
• Experience using data visualization tools such as Dataroma and DataStudio and Tableau
• Basic knowledge of tagging and online tracking
• Knowledge of various measurement and campaign measurement technologies, Including DSPs, advertising platforms, viewability verification providers.
ABOUT XAXIS:
Xaxis is the outcome media company.

Xaxis combines innovative AI technology, advanced omnichannel solutions, data-driven creative, and worldwide programmatic expertise to transform digital media investments into real business outcomes.
GroupM and all its affiliates embrace and celebrate diversity, inclusivity, and equal opportunity. We are committed to building a team that represents a variety of backgrounds, perspectives, and skills. We are a worldwide media agency network that represents global clients. The more inclusive we are, the more great work we can create together.
Apply Here
For Remote Analyst, Analytics roles, visit Remote Analyst, Analytics Roles

********

Application Security Engineer at BlackLine

Location: Los Angeles

Get to Know Us:

It’s fun to work in a company where people truly believe in what they’re doing!

At Blackline, we’re committed to bringing passion and customer focus to the business of enterprise applications.

Since being founded in 2001, BlackLine has become a leading provider of cloud software that automates and controls the entire financial close process. Our vision is to modernize the finance and accounting function to enable greater operational effectiveness and agility, and we are committed to delivering innovative solutions and services to empower accounting and finance leaders around the world to achieve Modern Finance.

Being a best-in-class SaaS Company, we understand that bringing in new ideas and innovative technology is mission critical. At BlackLine we are always working with new, cutting edge technology that encourages our teams to learn something new and expand their creativity and technical skillset that will accelerate their careers.

Work, Play and Grow at BlackLine!
Make Your Mark:

In collaboration with development and architecture teams, the Application Security Engineer will define security controls in BlackLine’s software, identify and prioritize vulnerabilities in the application, databases, and related infrastructure components, provide resolution guidance to the development team, perform source code reviews, conduct application security tests, monitor security events and audit trails, and respond to incidents. This position will also be responsible for educating and mentoring developers on secure coding and application security best practices.
You’ll Get To:
• Identify risks and areas of exposure in applications developed and/or used by BlackLine.
• Perform security reviews of source code, stored procedures, and server/service configurations.
• Define and document application security requirements for BlackLine applications.
• Oversee development of security components throughout all stages of the SDLC.
• Perform manual and automated security testing of BlackLine applications.
• Monitor application logs and audit trails.
• Monitor industry trends and threat landscape and recommend necessary controls or countermeasures.
• Educate developers on secure coding techniques and security best practices.
• Participate in development of security policies, standards, and processes.
• Participate in incident handling and perform application-related forensics activities.
• Perform other duties as assigned.
What You’ll Bring:
• Bachelor’s degree in Computer Science or related field.
• 2+ years of hands-on application security experience.
• Hands-on development experience and thorough understanding of object-oriented programming.
• Advanced knowledge of web application technologies, MVC, Ajax, XML, SOA, SSL, web-related protocols and services.
• Intermediate knowledge of MS SQL.
• Basic knowledge of other commonly-used RDBMS.
• Ability to identify security vulnerabilities from source code reviews and testing.
• Knowledge of encryption technologies, secure communications, and secure credentials management.
• Advanced experience with at least one scripting language (e.g.: Perl, Python).
• Intermediate proficiency with C/C++ or Java.
• Advanced knowledge of common application vulnerabilities, (e.g.: XSS, CSRF, SQL injection, cookie/header/encoding manipulation, input/output validation, session replay).
• Intimate familiarity with web application testing tools (eg: Burp, Parox, Fiddler, Havij, netcat).
• Ability to define application security requirements and build secure web application solutions.
• Advanced written and verbal communication skills including ability to present technical subjects to non-technical audiences.
• Strong work ethic, attention to detail, and organizational skills.
• Ability to multi-task and manage priorities in a fast-paced environment.
• Ability to collaborate in a team and work independently.
• Conceptual understanding of software development principles and SDLC models.
• Intermediate proficiency with the Microsoft Office suite.
• Windows and Linux operating systems knowledge at advanced user level.
We’re Even More Excited If You Have:
• Thorough understanding of Java, C#, ASP.NET.
• Experience with lower-level languages (Assembly), debug and reverse-engineering tools (IDA, etc.).
• Ability to write proof-of-concept exploits.
• Agile experience.
Thrive at BlackLine Because You Are Joining:
• A technology-based company with a sense of adventure and a vision for the future. Every door at BlackLine is open. Just bring your brains, your problem-solving skills, and be part of a winning team at the world’s most trusted name in Finance Automation!
• A culture that is kind, open, and accepting. It’s a place where people can embrace what makes them unique, and the mix of cultural backgrounds and varying interests cultivates diverse thought and perspectives.
• A company who believes in providing the best possible service to its clients, and that starts with offering amazing perks to its employees. These perks include 100% coverage for healthcare, vision, and dental, 401(k) matching, ESPP, food, drinks, games, and so much more!
• A culture where BlackLiner’s continued growth and learning is empowered. BlackLine offers a wide variety of professional development seminars and inclusive affinity groups to celebrate and support our diversity.

BlackLine is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity or expression, race, age, religious creed, national origin, physical or mental disability, ancestry, color, marital status, sexual orientation, military or veteran status, status as a victim of domestic violence, sexual assault or stalking, medical condition, genetic information, or any other protected class or category recognized by applicable equal employment opportunity or other similar laws.
Apply Here
For Remote Application Security Engineer roles, visit Remote Application Security Engineer Roles

********

The Tech Career Guru
We will be happy to hear your thoughts

Leave a reply

Tech Jobs Here
Logo