Data Security/ Compliance

Senior Security Engineer

  • Intercom
  • Dublin, Ireland
  • August 13, 2021
Senior Security Engineer Security Engineer
  • Define & drive our technical strategy through influencing security engineering team roadmaps, as well as leading & delivering impactful projects.
  • Do hands-on engineering work at every level of our stack, building software components that our engineering teams can use to tackle common software vulnerabilities and raise the security bar across our core infrastructure.
  • Design improvements to the security architecture around our production environment, applying the principle of least privilege to improve our identity and access management for customers, users and applications.
  • Assess the security of planned features and applications as well as our core infrastructure, partnering with the relevant teams to identify and mitigate risks prior to release.
  • Act as the lead in our response to security incidents, working as part of a cross-functional incident response team to rapidly contain and mitigate security incidents.
  • Partner with other engineers in the information security group, providing guidance and technical mentorship for others to help them grow and do the best work of their careers.
  • Deliver focused security training to other engineers within the company, making them aware of the common pitfalls around software development and educating them on best practices and support in the form of existing security solutions.

You need to have professional experience which includes some or all of the following areas of security engineering:

  • Applying security processes as part of the Secure Software Development Lifecycle (e.g. threat modelling, security architecture reviews)
  • Knowledge of common web-based vulnerabilities (e.g. CSRF, XSS) and the mechanisms to defend against them (e.g. HSTS, CSP, TLS etc)
  • Building controls which implement security standards/frameworks, such as authentication (e.g. SAML), authorization (e.g. Oauth, Oso) or applied cryptography
  • Leveraging automation to secure cloud infrastructure, e.g. implementing identity & access controls, managing secrets, segmenting networks.

In addition:

  • You have deep knowledge of a high-level programming language (e.g. Ruby, Python etc.). Note that the language doesn’t have to be one that we use here!
  • You have proficiency and prior experience in writing & delivering software in a production environment.
  • We build on AWS; experience in building & operating distributed systems in the cloud is an advantage.

We are a well treated bunch, with awesome benefits! If there’s something important to you that’s not on this list, talk to us! :)

  • Competitive salary and equity in a fast-growing start-up
  • Regular compensation reviews - we reward great work!
  • Peace of mind with life assurance, as well as comprehensive health and dental insurance for you and your dependents
  • Open vacation policy and flexible holidays so you can take time off when you need it
  • Paid maternity leave, as well as 6 weeks paternity leave for fathers, to let you spend valuable time with your loved ones
  • If you’re cycling, we’ve got you covered on the Cycle-to-Work Scheme. With secure bike storage too
  • MacBooks are our standard, but we’re happy to get you whatever equipment helps you get your job done

We are a diverse bunch of people and we want to continue to attract and retain a diverse range of people into our organisation. We're committed to an inclusive and diverse Intercom! We do not discriminate based on gender, ethnicity, sexual orientation, religion, civil or family status, age, disability, or race.

#LI-Remote

Apply
Related News