Senior Security Engineer
Brace- Full Time
- Senior (5 to 8 years)
Candidates should have a track record of independent ownership of areas of responsibility. Experience with threat modeling, red teaming, penetration testing, or other means of identifying security issues is required. Some experience writing code and the ability to read code to find security flaws is necessary. Strong collaboration and communication skills, with deep developer empathy, are essential. Highly organized project management skills are also required.
As a Senior Security Engineer at Vanta, you will participate in team exercises to identify potential security risks, including threat modeling and tabletop scenarios. You will contribute to complex prioritization discussions around which risks are the most important to solve next. Planning projects to address prioritized risks and coordinating with cross-functional stakeholders to execute those projects will be part of your role. You will build maintainable programs to implement operational excellence, collaborate with engineers to review project plans and pull requests for potential security concerns, and build, customize, and run tools to increase the maturity of the security program. Supporting ongoing bug bounty and penetration testing programs, establishing and maintaining a network of security champions, and delivering training to address security knowledge gaps will also be your responsibilities.
Automates SOC 2 compliance for businesses
Vanta simplifies the process of obtaining and maintaining SOC 2 certification, which is essential for organizations that manage sensitive customer data. The company offers a software-as-a-service (SaaS) platform that automates numerous checks to ensure that security controls are effective and compliant with industry standards. This automation helps small to medium-sized enterprises (SMEs) and tech companies monitor risks and vulnerabilities continuously, significantly reducing the time and cost associated with achieving SOC 2 compliance. Vanta's subscription-based model provides clients with a more efficient and cost-effective way to maintain compliance compared to traditional methods. The goal of Vanta is to transform the compliance process, allowing organizations to focus on their core operations while enhancing their security posture.