Vanta

Senior Security Engineer

United States

Vanta Logo
$218,000 – $256,000Compensation
Mid-level (3 to 4 years), Senior (5 to 8 years)Experience Level
Full TimeJob Type
UnknownVisa
Cybersecurity, Enterprise SoftwareIndustries

Requirements

Candidates should have a track record of independent ownership of areas of responsibility. Experience with threat modeling, red teaming, penetration testing, or other means of identifying security issues is required. Some experience writing code and the ability to read code to find security flaws is necessary. Strong collaboration and communication skills, with deep developer empathy, are essential. Highly organized project management skills are also required.

Responsibilities

As a Senior Security Engineer at Vanta, you will participate in team exercises to identify potential security risks, including threat modeling and tabletop scenarios. You will contribute to complex prioritization discussions around which risks are the most important to solve next. Planning projects to address prioritized risks and coordinating with cross-functional stakeholders to execute those projects will be part of your role. You will build maintainable programs to implement operational excellence, collaborate with engineers to review project plans and pull requests for potential security concerns, and build, customize, and run tools to increase the maturity of the security program. Supporting ongoing bug bounty and penetration testing programs, establishing and maintaining a network of security champions, and delivering training to address security knowledge gaps will also be your responsibilities.

Skills

Threat Modeling
Red Teaming
Penetration Testing
Code Review
Security Issue Identification
Collaboration
Communication
Developer Empathy
Project Management

Vanta

Automates SOC 2 compliance for businesses

About Vanta

Vanta simplifies the process of obtaining and maintaining SOC 2 certification, which is essential for organizations that manage sensitive customer data. The company offers a software-as-a-service (SaaS) platform that automates numerous checks to ensure that security controls are effective and compliant with industry standards. This automation helps small to medium-sized enterprises (SMEs) and tech companies monitor risks and vulnerabilities continuously, significantly reducing the time and cost associated with achieving SOC 2 compliance. Vanta's subscription-based model provides clients with a more efficient and cost-effective way to maintain compliance compared to traditional methods. The goal of Vanta is to transform the compliance process, allowing organizations to focus on their core operations while enhancing their security posture.

Key Metrics

San Francisco, CaliforniaHeadquarters
2018Year Founded
$343.4MTotal Funding
SERIES_CCompany Stage
Enterprise Software, CybersecurityIndustries
501-1,000Employees

Benefits

100% Benefits Coverage
Flexible & Remote Work
Paid Parental Leave
Unlimited PTO
Health & Wellness
401(k)

Risks

Emerging competitors like ComplyCube could challenge Vanta's market position.
Healthcare data breaches may increase demand for more robust security measures.
Reliance on partnerships like HITRUST poses risks if standards evolve significantly.

Differentiation

Vanta automates up to 90% of audit preparation, reducing compliance costs significantly.
The platform offers real-time insights, enhancing trust and streamlining security reviews.
Vanta's HITRUST e1 solution automates 80% of requirements, ensuring continuous compliance.

Upsides

Vanta secured $150M in Series C funding, boosting its growth potential.
Partnership with HITRUST enhances Vanta's credibility in the healthcare sector.
Rising demand for automated compliance solutions supports Vanta's market expansion.

Land your dream remote job 3x faster with AI