Senior Security Engineer
EverCommerce
AWSAzureCloudCyber SecurityMicroservices
Director, Security Architecture & Engineering
EverCommerce
full-time
Posted on:
Location Type: Remote
Location: Remote • Colorado • 🇺🇸 United States
Visit company websiteSalary
💰 $200,000 - $225,000 per year
Job Level
Lead
Tech Stack
AWSAzureCloudCyber SecurityMicroservices
About the role
- Create and maintain security architecture and engineering processes and procedures
- Design system architectures which meet established cybersecurity requirements and align with customer needs
- Define, document, and communicate security requirements
- Develop security architecture requirements and implementation guidance based on analysis of NIST 800-53 and other security control frameworks
- Architect, design, implement, maintain, and operate information system security controls and countermeasures
- Provide techniques and patterns for securing integration with external security system vendors and/or cloud providers
- Lead regular architecture and design reviews to ensure requirements implementation
- Evaluate and play an active role in life-cycle management of multiple security technologies
- Identify security risks and control gaps within systems, designs, products, data flows, and processes and recommend corrective architecture, integrations, controls, and operations
- Lead development of security requirements, architectures, and documentation to ensure security controls are integrated into new technology deployments
- Perform secure architecture and design reviews of new technology and security systems deployments and collaborate with business teams to integrate secure-by-design principles
- Maintain a clear view of the overall security architecture roadmap and strategic plan
- Leverage emerging technologies and advanced security practices
- Build, maintain and mature security architecture metrics and reporting
- Recruit, hire, train, coach and mentor security engineers and analysts
- Perform additional duties as required and assigned
Requirements
- At least 10 years of relevant work experience in a technical field (e.g. cybersecurity, software development, or systems administration)
- At least 10 years people leadership experience
- At least 5 years people leadership experience specifically in security
- Bachelor's Degree in a technical discipline such as Cyber Security, Information Technology, Computer Science, or Information Systems - or equivalent professional experience
- Have at least one current Industry recognized security certification; CISSP, CISM, CISA, GIAC or commensurate experience
- Demonstrated experience with systems compliant to NIST 800-53, NIST CSF, or ISO 27001-2022
- Exceptional knowledge and understanding of creation/implementation and securing of cloud technologies such AWS and Azure
- Knowledge of Information Security risk assessment methodologies and standards
- Extensive ability to estimate, plan, lead and execute complex technical projects
- Excellent communication and interpersonal leadership skills
- Detail oriented team player with the desire and ability to mentor and onboard new engineers and team members
- Highly flexible, self-motivated and eager to learn
- Excellent verbal and written English communication skills
- Must be eligible to work without sponsorship in the United States
- May require travel to Corporate Headquarters in Denver, Colorado, or other North American offices
- Preferred: advanced knowledge of common attacks and defense architectures; experience securing multi-tenant compute services, microservices, modern APIs; knowledge of web and container-based vulnerabilities; experience with Information Security policies and technical documentation
Benefits
- Continued investment in your professional development
- Day 1 access to a robust health and wellness benefits package
- Annual wellness stipend
- 401k with up to a 4% match and immediate vesting
- Flexible and generous (FTO) time-off
- Employee Stock Purchase Program
- Annual bonus opportunity in most US locations
- Remote or in-office options (work 100% remotely if desired)
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
security architecturecybersecurityNIST 800-53cloud technologiesAWSAzurerisk assessment methodologiessecurity controlstechnical project managementsecure architecture design
Soft skills
people leadershipcommunication skillsinterpersonal skillsmentoringdetail orientedflexibilityself-motivationteam playercollaborationcoaching
Certifications
CISSPCISMCISAGIAC
