Senior Security Engineer

Engineering Salt Lake City, Utah Irvine, California


Description


About the opportunity

As a Senior Security Engineer at Mavenlink, you’ll report to our VP of Information Security & Compliance and help lead the charge in keeping our SaaS product secure for our numerous clients. With the right person in place, we can better-position our product for the high growth we’re experiencing as we scale. Our enterprise-class product is already in the hands of hundreds of clients around the world with tens of thousands of users - this opportunity will help shape the future philosophy of SaaS software security practices at Mavenlink.


Goals and Responsibilities

You’ll be a critical piece of our security roadmap and a true evangelist for secure coding and secure software design for our dedicated engineering teams. Working directly with R&D leadership, you’ll establish quarterly product and infrastructure security goals and the plans to achieve them. You’ll also be a positive contributor to the team culture for our small, but growing, security team! Success in this role stems from:
  • Establishing patterns and tooling around security development practices
  • Acting as the point of triage and escalation owner for inbound security reports
  • Managing vulnerability management processes and maintaining/improving our overall security posture
  • Participating in annual audit cycles (pen-testing, SOC 1 & 2 audits, etc)
  • Assisting in policy and process creation, as well as our risk assessment processes

Your Profile

You’re an engineer at heart and deconstructing complex solutions to identify weakness is what drives you! Data-driven decisions come naturally to you but you can also plan for yet-to-occur events with a conviction, while still understanding that people are people. You have great ideas but just haven’t yet found the flexible environment to truly build on those ideas - Mavenlink is small enough that you’ll help us build the structure to allow us to scale rather than be a “cog in the machine”. Optimism and empathy are some of your strengths and you feel you’d thrive in a culture built on empathy and collaboration. Our newest Sr. Security Engineer will also bring with them:
  • A bachelor’s degree in science or mathematics (preferably)
  • 3+ years of software security success
  • CCPA / GDPR data privacy knowledge
  • An understanding of standard compliance frameworks (such as ISO, SOC, PCI, HIPAA)
  • An independent philosophy that doesn’t rely on a team for each outcome