Senior Engineer, IT & Information Security Automation
SmithRxSalary not specified
Full Time
Senior (5 to 8 years)
Not SpecifiedCompensation
Mid-level (3 to 4 years), Senior (5 to 8 years)Experience Level
Full TimeJob Type
UnknownVisa
Information Security, Technology, Data AnalyticsIndustries
Requirements
- 5+ years of experience in automation development
- Bachelor's degree in computer science, management information systems, relevant field, or equivalent demonstrable experience
- Knowledge of security tooling (e.g. SIEM, Identity and Access Management platforms, DLP)
- Knowledge of cloud platforms (AWS, GCP, Azure)
- Knowledge of Infrastructure as Code (Terraform)
- Knowledge of scripting languages (e.g. Python)
- Experience with workflow platforms such as tines.io is beneficial
- Knowledge of cloud architecture and cybersecurity domains and principles
- Professional certification such as AWS Solutions Architect, CCSP, CISSP, CRISC, ISO 27001 Lead Auditor, or equivalent
- Experience with information security control testing methodologies, information security risk assessments, and auditing tools is beneficial
- Knowledge of security controls provided by tools such as Sailpoint, Rapid7, Wiz.io, and MS Defender is beneficial
- Hands-on experience with API integrations and scripting (e.g. Python, PowerShell, JavaScript)
- Experience with IT Service Management, DevOps, Identity and access management, ERP systems (e.g., SAP, Oracle) and GRC tools are beneficial
- Experience using automation, data-driven testing techniques and generative AI to gain efficiency in control assurance
Responsibilities
- Analyze and automate existing manual test steps for assessing operating effectiveness of security controls in both cloud and on-prem environments
- Develop automated control mechanisms (e.g. scripts, APIs, compliance dashboards), integrating validation logic into CI/CD pipelines, cloud environments, and endpoint tools
- Ensure control monitoring (CCM) by developing reusable logic and ensuring automated controls produce evidence fit to support control assessments
- Develop dashboards visualizing compliance status and resolve platform integration errors
- Analyze false positives and lead remediation of those indicators
- Maintain a control automation backlog and document all automated control logic, control mappings and system configurations
- Collaborate with control owners, engineers, and the security control assurance team to identify automation opportunities
- Implement scripts or integrations for both on-prem and cloud environment tools, and validate outputs against the security controls and defined test steps
Skills
Security Controls
Automation
Cybersecurity GRC
Scripting
Cloud Security
On-Premises Security
Control Validation
Evidence Collection
Python
Bash
Expedia
Travel booking platform for flights, hotels, rentals
About Expedia
Expedia Group operates in the travel industry, offering a wide range of services for travelers and travel-related businesses. It connects users with options for flights, hotels, car rentals, vacation packages, and activities through its various brands, including Expedia, Hotels.com, and Vrbo. Travelers can easily find and book trips that match their preferences and budgets. The company earns revenue primarily through commissions on bookings and advertising from travel service providers looking to promote their offerings. Additionally, Expedia Group supports its partners by providing access to valuable data and technology, helping them improve their operations and grow their businesses. The goal of Expedia Group is to create a seamless travel experience for users while maximizing the potential of its partners.
Bellevue, WashingtonHeadquarters
1996Year Founded
$3,277.3MTotal Funding
IPOCompany Stage
Consumer Goods, EntertainmentIndustries
10,001+Employees
Benefits
Competitive Paid Time Off
Travel Discounts
Healthcare Flexible Spending Accounts
Employee Assistance Program
Wellness & Travel Reimbursement
Workplace Accomodations
Medical, Dental, & Vision Insurance
Matching Gifts
New Parental Benefits
Risks
Riyadh Air's entry could increase competition, affecting Expedia's market share.
CFO transition may lead to strategic shifts impacting financial management and investor confidence.
Expedia's partnerships may strain resources, affecting service quality if not managed well.
Differentiation
Expedia offers a comprehensive suite of travel services under one platform.
The company leverages a diverse portfolio of brands like Hotels.com and Vrbo.
Expedia provides partners with valuable data and technology to optimize their offerings.
Upsides
Expedia can capitalize on the rise of 'workcations' with longer stay packages.
The trend of 'bleisure' travel offers opportunities for specialized leisure-business packages.
Increased demand for personalized travel experiences can enhance user engagement for Expedia.
Related Jobs
RemoteRemoteCompliance Engineer
Flock Safety$176,000 - $220,000/year
- Full Time
- Senior (5 to 8 years)
RemoteSecurity Engineer, Cloud Security
Red Cell PartnersSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteGRC Manager
Baseten$150,000 - $250,000/year
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteAdvanced Industrial Controls Engineer
SymboticSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteSoftware Engineer, CI/CD
VercelSalary not specified
- Full Time
- Junior (1 to 2 years)
RemoteRegulatory & Security Compliance Analyst
RainSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)