Security Engineer

Posted Jul 4

Do you want to contribute to solving one of the most important issues of our generation? Join us in accelerating the transition to a water-secure world.

Waterplan is a fast-growing startup in the Climate Tech space that develops the world’s leading B2B Enterprise SaaS platform for companies to measure, respond, and report companies´ increasingly changing water risk. See our latest WEF video.

By showing companies the business case for mitigating water risk, Waterplan accelerates the transition to a world where companies are incentivized to save more water, abate the discharge of polluting effluents, conserve watersheds, and preserve shared value.

We are seeking an experienced, strategic, and hands-on Security Engineer with a strong entrepreneurial background to lead our information security program, ensuring the confidentiality, integrity, and availability of our platform, customer data, and internal systems. 

The Security Engineer will be a key member of the Product team, reporting to the Head of Engineering, and will have a crucial role in shaping the company's strategy and risk management initiatives. In addition, the Security Engineer will be responsible for taking on IT responsibilities as needed, contributing to the overall success of the organization.

Key Responsibilities:

  1. Develop, implement, and maintain a comprehensive information security strategy, aligning it with the organization's strategic objectives and risk appetite.
  2. Foster a security-aware culture within the organization by developing and delivering relevant training, communications, and awareness programs for all employees.
  3. Establish and oversee an effective security governance framework, ensuring compliance with industry standards, laws, and regulations applicable to our SaaS platform and customer base (e.g., GDPR, CCPA, HIPAA, ISO 27001, SOC 2).
  4. Identify and evaluate security risks across our products and services.
  5. Lead the definition and implementation of security processes and solutions.
  6. Conduct security assessments and penetration testing to identify and address potential vulnerabilities.
  7. Stay up-to-date on the latest security threats and technologies.
  8. Respond to security incidents and work to resolve them in a timely manner.

Qualifications:

  • 3+ years of experience in application security or software security-related roles.
  • Experience with web and mobile application security testing and secure coding practices.
  • Familiarity with common vulnerabilities and how to mitigate them.
  • Strong understanding of security protocols and technologies, including encryption and authentication.
  • Excellent communication skills and ability to work effectively in a team environment.
  • Experience with product development processes.
  • Excellent communication both in English and Spanish.

Preferred Qualifications:

  1. Experience in an early-stage startup environment, with the ability to scale security programs as the company grows.
  2. Familiarity with cloud security best practices and experience securing cloud-based infrastructure and applications (e.g., AWS, Azure, GCP).
  3. In-depth knowledge of cloud-based SaaS security architecture, API security, and secure software development practices.

At Waterplan, you’ll enjoy

  • Our Mission. We are building something big, you will be part of an ambitious and impactful company focused on achieving one of the major global sustainable development goals. 
  • Our Spirit. We are creating something that has never been done before. The entrepreneurial spirit of our team is driving a profound transformation of the water sector.
  • Our Team. Our team is our most valuable asset. Waterplanners bring together three worlds: technology, water and science. They are distributed worldwide, bringing their unique perspective to solve complex water resource challenges. 
  • Our Values: Think Long Term, Iterative Excellence, Thoughtful Discussion, Make Others Successful.