Senior Research Engineer- Cloud Compliance

Research Remote, United States


Description

Your Role:

Tenable is looking for a Senior Research Engineer to join our Audit and Compliance team and to enhance our Cloud compliance capabilities. This position involves researching and developing methods for testing configurations for adherence to security baselines and industry best practices. 

Your Opportunity:

  • Work on advanced research and development initiatives 
  • Implement configuration auditing content and software while minimizing false positives & false negatives
  • Research new methods of configuration auditing for new and upcoming technologies
  • Share technical expertise with internal and external stakeholders
  • Bring innovative ideas to improve our team’s processes and effectiveness
  • Develop tools for assisting in code development and increase the accuracy, efficiency and velocity of the content creation
  • Stay up to date with advancements and developments in the industry and perform original research to keep our customers secure

What You’ll Need:

  • At least 5 years of R&D experience
  • At least 5 years working with major Cloud platforms like AWS, Azure, GCP
  • Demonstrably strong software development skills
  • Declarative Programming Language Experience - Rego/Prolog/Datalog
  • CI/CD expertise
  • Experience working with multiple operating systems (proficiency with Linux is a must)
  • Excellent written and verbal communication skills
  • Willingness to explore and learn
  • B.S. degree in Computer Science or a related field, or equivalent work experience

And Ideally:

  • Familiarity with Nessus and other Tenable products (Tenable.io, Tenable.sc, etc.)
  • Familiarity with security standards such as NIST 800-53, CIS, or DISA STIGS
  • Familiarity with regulatory and industry requirements such as PCI, HIPAA, SOX, or GDPR
  • Experience with systems administration and configuration
  • Comfortable working at the command line (bash, PowerShell, etc.)
  • Experience implementing configuration controls (Group Policy, config files, etc.)
  • Experience with REST API usage
  • Experience with data transformations (regular expressions, XSLT, JQ)
  • One or more security related certifications (e.g. CISSP, CISA, CISM)

If you’ve reached this point in the job description and feel you’re still not sure if you should apply…Just do it! We know there are no perfect applicants. You may not have 100% of all those bullets listed above - and that’s okay. If you’re feeling like you’re not going to fit in with our teams - that’s not ok. We're One Tenable which means however you identify and whatever background you bring with you, we encourage you to submit an application if it’s a role you can be passionate about doing every day.

We’re committed to promoting Equal Employment Opportunity (EEO) at Tenable - through all equal employment opportunity laws and regulations at the international, federal, state and local levels.