EverCommerce

Senior Security Engineer

EverCommerce

full-time

Posted on:

Origin:  • 🇺🇸 United States • Colorado

Visit company website
AI Apply
Apply

Salary

💰 $130,000 - $160,000 per year

Job Level

Senior

Tech Stack

AWSAzureCloudCyber SecuritySDLC

About the role

  • Create and maintain security architecture and engineering processes and procedures
  • Design of system architectures which meet established cybersecurity requirements and align with customer needs
  • Development of security architecture requirements and implementation guidance based on analysis of NIST 800-53 and or other security control frameworks
  • Architect, design, implement, maintain, and operates information system security controls and countermeasures
  • Provides techniques and patterns for securing integration with external security system vendors and/or cloud providers
  • Leads regular architecture and design reviews to ensure requirements implementation
  • Evaluates and plays an active role in life-cycle management of multiple security technologies
  • Identify security risks and control gaps within systems, designs, products, data flows, and processes; and recommend corrective architecture, integrations, controls, and operations
  • Participate in the development of security requirements, architectures, and documentation to ensure security controls are seamlessly integrated into new technology deployments
  • Perform secure architecture and design reviews of new technology and security systems deployments, and collaborate with business teams to integrate secure-by-design principles into CI/CD pipelinbes and Agile development processes
  • Maintain a clear view of the overall security architecture roadmap and strategic plan
  • Leverage emerging technologies and advanced security practices to ensure EverCommerce is at the forefront of security for our solution groups and our customers
  • Build, maintain and mature security architecture metrics and reporting
  • Serve as a subject matter expert/contributor measurably improving the overall security framework and program
  • Mentor junior security engineers and analysts
  • Additional duties as required and assigned

Requirements

  • At least 7 years of relevant work experience in a technical field (e.g. cybersecurity, software development, or systems administration)
  • Bachelor's Degree in a technical discipline such as Cyber Security, Information Technology, Computer Science, or Information Systems - or equivalent professional experience
  • Have at least one current Industry recognized security certifications; CISSP, CISM, CISA, GIAC or commensurate experience
  • Excellent communication and interpersonal skills, with the ability to communicate and collaborate effectively with cross-functional teams, matrixed organizations, and technical / and non-technical stakeholders
  • Demonstrated experience with the security, development and/or management of systems compliant to NIST 800-53, NIST CSF, or ISO 27001-2022 security control frameworks
  • Exceptional knowledge and understanding on the creation/implementation and securing of cloud technologies such AWS and Azure
  • Knowledge of Information Security risk assessment methodologies and standards
  • Highly flexible, self-motivated and eager to learn, with a strong passion for cyber security
  • Excellent verbal and written English communication skills
  • Successful candidates will have broad understanding and expert level experience in multiple of the following security technologies , security domains and sub-domains: EDR/XDR/NDR Security Automation and AI integration Information Asset Inventory Systems Secure Web Gateways Data Loss Prevention SIEM//Logging UEBA, UBA, Predictive Analytic Systems SOAR Vulnerability Management Systems Cryptography, PKI, Field Level Data at Rest Encryption Privileged Access Management Identity/MFA Application Security/WAF DevOps/SecOps/DevSecOps Cloud Technology Platforms, IaaS, SaaS Network Intrusion Prevention/Detection (IPS/IDS) Security Information and Event Management (SIEM) Vulnerability scanning tools Application scanning tools Network Access Controls (NAC) Zero Trust Networking Architectures Network-based and user-based segmentation controls Virtual Private Networks; SSL, IPSec and Site-to-Site CTI Frameworks and Systems SDLC Methodologies Systems segmentation, system hardening, and process isolation Vulnerability Management Managed Detection and Response MSSP Relationships
Centene Corporation

Data Security Engineer II

Centene Corporation
Junior · Midfull-time$30–$54New York · 🇺🇸 United States
Posted: 26 days agoSource: centene.wd5.myworkdayjobs.com
AWSAzureCloudCyber Security
Ball Corporation

Cybersecurity Lead

Ball Corporation
Seniorfull-time$96k–$137k / yearColorado · 🇺🇸 United States
Posted: 16 days agoSource: jobs.ball.com
AWSAzureCloudCyber SecurityDNSFirewallsGoJenkinsLinux
Palo Alto Networks

Consulting Director – Specialized and Proactive Services

Palo Alto Networks
Leadfull-time$183k–$252k / yearCalifornia · 🇺🇸 United States
Posted: 29 days agoSource: jobs.smartrecruiters.com
AWSAzureCloudCyber SecurityGoogle Cloud Platform
Guidehouse

Lead IT Security Engineer

Guidehouse
Seniorfull-time$102k–$170k / year🇺🇸 United States
Posted: 4 days agoSource: guidehouse.wd1.myworkdayjobs.com
AWSAzureCloudCyber SecurityFirewallsSplunk
Kidde Global Solutions

Senior Cybersecurity Engineer

Kidde Global Solutions
Seniorfull-time$127k–$150k / year🇺🇸 United States
Posted: 2 days agoSource: carrier.wd5.myworkdayjobs.com
AWSAzureCloudCyber SecurityGoogle Cloud PlatformPythonSDLCSplunk