Apply on Employer Site

Dscout · 3 hours ago

Cybersecurity Engineer

United States

Full-time

Remote

Mid Level

3+ years exp

Dscout is building a flexible and powerful UX research platform trusted by top brands. They are seeking a Cybersecurity Engineer to reduce risk within their SaaS environment and internal IT systems by implementing cybersecurity controls and monitoring the threat landscape.

Consumer ResearchMarket ResearchProduct ResearchUX Design

Growth Opportunities

Responsibilities

Lead the process to build security into the Dscout SaaS environment. This includes applying security throughout the software development lifecycle

Collaborate with Engineering to plan and implement cybersecurity controls to protect the SaaS environment. This includes applying leading practices to secure AWS resources (e.g., VPCs, EC2 instances, and containers)

Continually enhance security monitoring of the SaaS environment and internal IT services by implementing SIEM and working with Engineering to continuously improve logging and auditability

Assess evolving threats and develop recommendations to mitigate risk to Dscout. You will provide weekly threat intelligence reports highlighting potential risk to the organization

Work side-by-side with Engineering to analyze, contain, and mitigate cyber attacks and other related incidents

Perform vulnerability monitoring and, where appropriate, ensure remediation

Participate in the development of security policies and processes

Assist third party risk reviews

Provide recommendations to continually improve security controls

Assist in development of security programs and efforts to promote security awareness

Qualification

AWS securityCybersecurity monitoring toolsVulnerability managementSecurity frameworksOWASP Top 10Infrastructure as codeSecurity policiesCI/CD securityCuriosityCommunication skillsDocumentation skillsPresentation skillsTeam collaborationProblem-solving

Required

Experience working with developers to conduct security reviews and provide strong recommendations to manage risk. This includes a strong understanding and practical use of OWASP Top 10 (web and AI)

Experience securing AWS cloud environments and infrastructure as code solutions such as Terraform

Proven ability to implement security monitoring tools such as Datadog. This includes the ability to identify relevant scenarios and ensure proper logging

Experience responding to cyber attacks such as bots and account compromise as well as threats like data leakage and infected computers

Strong knowledge of cloud computing environments

Working knowledge of security in software development and continuous integration/continuous delivery (CI/CD)

Experience documenting and implementing security policies and processes

Knowledge of security frameworks and standards: ISO 27001, NIST, or SANS preferred

Experience with HITRUST and/or SOC 2 certification is preferred

Good communication, documentation and presentation skills

Limitless curiosity and insatiable appetite to understand human behavior and relevant technologies

A minimum of 3 years of security experience

Preferred

Bachelor's degree is preferred

CISSP, CCSP, or GIAC security certification preferred

Benefits

A strong and competitive compensation package with a built-in bonus and equity program.

An incredible and progressive benefits package (for both you and your dependents) to support work/life balance, including flexible PTO, 15 company holidays, 12 weeks of paid parental leave, 401k match, and much more.

An education stipend to support your growth & development, and a remote work stipend.