Senior Security Engineer
Remote US
At Vanta, our mission is to secure the internet and protect consumer data. We believe that security should be monitored and verified continuously, and we empower companies to practice better security and prove it with ease. Vanta has a kind and talented team, and while some have prior security experience, many have been successful at Vanta without it.
As a Senior Security Engineer at Vanta, you’ll own projects with impact across the business to help us run an efficient and highly effective security team. The security team at Vanta ensures that we are a trusted and trustworthy steward of sensitive data. We also contribute subject matter expertise to the product, sales, marketing, support, and engineering functions, given the nature of our business.
You’ll join Vanta’s Security organization, which provides essential security operational services, is directly involved in the software development process and building tools to make it easy for developers to ship products securely, sets policies and standards regarding enterprise-wide security requirements, and offers advisory services to enable our business to thrive while effectively managing risk. If you’re someone who has high initiative and enjoys problem solving while having impact at a high-growth company, we would love to hear from you!
What you’ll do as a Senior Security Engineer at Vanta:
Participate in team exercises to identify potential security risks, including threat modeling and tabletop scenarios
Contribute to complex prioritization discussions around which risks are the most important to solve next
Plan projects to address the risks we prioritize, and coordinate with cross-functional stakeholders across the company to execute those projects
Build maintainable programs to implement operational excellence where ongoing work is needed to achieve our goals (e.g. vulnerability management)
Collaborate with engineers to review project plans and pull requests for potential security concerns and improvements
Build, customize, and run tools to increase the maturity of our security program without adding undue friction to the company’s operations
Support ongoing bug bounty and penetration testing programs
Establish and maintain a network of security champions
Understand security knowledge gaps of the development organization and help to deliver training to address gaps
Provide input into architectural discussions to enable teams to innovate in a secure and repeatable manner
How to be successful in this role:
A track record of independent ownership of areas of responsibility
Experience with threat modeling, red teaming, penetration testing, or other means of identifying security issues
Experience writing code, …
This job isn't fresh anymore!
Search Fresh JobsJob Profile
Remote US
Benefits/Perks100% covered Medical 100% covered medical, dental, and vision 100% covered Medical, Dental, and Vision Benefits 100% covered Medical, Dental, and Vision Benefits with Dependents Coverage 16 Weeks Fully Paid Parental Leave 401(k) matching Company paid holidays Competitive salary and equity Dental Flexible hours Flexible work hours Flexible Work Hours and Location Fully Paid Parental Leave Health stipend Health & wellness Health & Wellness Stipend Medical Medical, dental, and vision benefits Paid holidays Paid parental leave Parental leave PTO PTO Policy Remote-first company Team activities Team building activities Vision Vision Benefits
Tasks- Deliver security training
- Identify security risks
- Plan and execute projects
Architectural Discussions Code Review Collaboration Communication Compliance Empathy Engineering HIPAA ISO 27001 Monitoring Operational Excellence Operations Penetration Testing Project Management Red teaming Sales Security Security Engineering Security Training SOC 2 Testing Threat modeling Training Vulnerability Management
TimezonesAmerica/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9