Security Engineer II, ASM

Posted Aug 11

Our success is reliant on building teams that include people from different backgrounds and experiences who can elevate assumptions and ideas with fresh perspectives. We're dedicated to hiring the whole human, not just a resume. To that end, we look for a diverse pool of applicants-including those from historically marginalized groups. We would like to invite you to apply even if you don't think you meet all of the requirements listed below. We don't want a few lines in a job description to get between us and the opportunity to meet you.

About The Team

Attack Surface Management (ASM) is a team under the Security Operations organization responsible for remediating attack vectors and surfaces in Outreach Infrastructures. Key functions include vulnerability analysis and response, cloud security posture management, web application, API runtime protection, etc.

The Role

The Outreach ASM team is looking for someone with experience with vulnerability management in the cloud, container, and serverless environments. This role requires extensive cross-team collaboration to remediate the security findings in different business units within the organization.

Location: This position can be remote within the US. #LI-Remote

Your Daily Adventures Will Include

  • Perform vulnerability analysis, fix validation, help teams understand the details of a vulnerability, and follow up with the system/application owner to remediate
  • Work with Detection & Response, Product Security, and Product Engineering team to align remediation efforts that best protect the company
  • Use a risk-based approach to prioritize security findings
  • Focus on continuous process improvement and identify opportunities for automation
  • Experience with dealing with zero-day, n-day, and emerging threat response processes
  • Build a trusting relationship with stakeholders; be a partner and enabler

Our Vision Of You

  • 5+ years of experience performing vulnerability analysis and remediation
  • Understanding of different types of vulnerabilities, security loopholes, and their remediations
  • Excellent communication; able to explain the impact to both technical and non-technical audiences
  • Strong knowledge of AWS, GCP, and Azure
  • Familiar with the Vulnerability Management process in the cloud
  • Knowledge of Configuration Management and Security Baselines such as CIS Baselines, NIST, etc


Why You'll Love It Here

? Generous medical, dental, and vision coverage for full-time employees and their dependents

? Flexible time off

? 401k to help you save for the future

? Company-organized and personal paid volunteer days to support the community that supports us

? Fun company and team outings (or virtual events these days!) because we play just as hard as we work

? Diversity and inclusion programs that promote employee resource groups like OWN (Outreach Women's Network), AAPI, Rainbow (LGBTQIA+), Gender+, LatinX, Black Excellence, Disability Community, and Veterans

? A parental leave program that includes not just extended time off but options for a paid night nurse, food delivery, gradual return to work, and the Gottman Institute's Bringing Home Baby course for new parents

? Employee referral bonuses to encourage the addition of great new people to the team

? Plus, unlimited snacks and beverages in our kitchen

? We're an equal opportunity employer. All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran or disability status