Security Operations (Secops) Engineer

Nextcapital Chicago , IL 60603

Posted 2 weeks ago

ABOUT US

At NextCapital, we build financial software that helps everyday investors build and manage a world-class financial portfolio. Our work directly benefits the millions of Americans who cant afford traditional financial advice, by providing them a solution driven by software. Working with the worlds leading financial institutions, our software tackles the complex challenges of providing financial advice through an intuitive and engaging user experience.

JOIN OUR TEAM

Our ability to be successful starts with our people, and were looking for someone who is passionate about developing and supporting our cloud-based SaaS platform. The ideal candidate is able to understand innovative technical concepts and has a great understanding of all critical information security domains. This role is looking for a key player to work closely with the development and DevOps teams as they design secure solutions meeting partner requirements. The CyberSecurity / SecOps Engineer will diagnose, document, and identify the necessary steps for establishing and maintaining a secure cloud and AWS environment. Learn more about NextCapital at www.themuse.com/companies/nextcapital

WHAT YOULL DO

  • Take an active role in the configuration and maintenance of a diverse range of security tools, with a focus on cloud environments.
  • Implement Information Security across multiple teams and ensure systems are compliant with internal and regulatory security standards.
  • Assure cloud solutions and frameworks are built with consideration toward SOC2, ISO27001 and SEC compliance requirements.
  • Perform security-related aspects of the design, implementation, and testing of disaster recovery and business continuity architectures.
  • Develop and streamline security alerting and management tools within an AWS Multi-account and corporate environment taking into account the confidentiality, integrity and availability security principles.
  • Implement automated solutions to filter out false positives and identify events that truly need human intervention by leveraging scripting, AWS services such as AWS Macie/Lambda/Config/etc. and other tools.
  • Participate in the development of action plans to remedy findings from assessments, work with DevOps and Developers to remediate findings and when required provide solutions.
  • Design and document system architecture and associated designs by analyzing requirements; constructing workflow charts and diagrams; studying system capabilities; writing specifications.

Requirements

WHO WERE LOOKING FOR

  • You are a driven, creative thinker who is able to merge business and technical information
  • You have a Bachelors degree in Information Security, Computer Science, or a related field
  • You have at least 5-10 years of experience within Information Security
  • You have experience with application security
  • You have experience with network security
  • Key Skill Sets: Linux, Chef, Ansible, AWS Security Services, Splunk
  • You have experience with identity and access management and SSO solutions, including SAML 2, OAuth 2, OIDC.
  • You have experience comprehensively securing and monitoring Amazon Web Services multi-account environments with hands on experience with VPC, SGs, IAM, ELB, EC2, Lambda, S3, RDS, SNS, SQS, etc.
  • You ideally have experience with AWS Security Services Configuration, Policies Management Automation and Monitoring/Alerting using SecurityHub, GuardDuty, WAF, Shield, Macie, Inspector, IAM Analyzer, Detective, etc.
  • AWS Security Engineering, Architecting or Security Specialty certification a plus
  • You have experience with operational, monitoring tools and frameworks on AWS such as Splunk Enterprise Security (ES), Privilege Escalation, AWS System Manager, Cloudwatch, Cloudtrail, fluentd, HIDS, Qualys, NetSkope, etc.
  • You have a working understanding of coding and scripting (Java, PHP, Python, Powershell, Perl and/or Ruby) to assist with automating critical security processes.
  • You are holding an Information Security Certification in good standing
  • Youre excited about learning and exploring new technologies and solutions

At this time, NextCapital will not sponsor a new applicant for employment authorization for this position

Benefits

WHY YOULL LOVE IT

  • Disrupt the financial advice industry by bringing affordable, easy to use financial tools to millions of people
  • See the impact of your work as you help in our continued growth
  • Enjoy a laid back work environment surrounded by top quality people that enjoy working with each other
  • Receive great benefits like stock options, 401(k) match, and top notch health benefits
  • Get in on the ground floor of a growth stage company where you can have a real impact on the company's future
  • Participate in company-sponsored cornhole leagues, Thursday After Hours (wine tastings, trivia, treats), book club, film club, fantasy football leagues, hackathons and other fun events
  • Enjoy our newly renovated office, located on Michigan Avenue, with an unobstructed view of both the lake and Millennium Park.
  • Enjoy locally roasted coffee, cold brew, iced tea, or espresso at your modular sitting/standing desk
icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Security & Devops Engineer

Nowpow

Posted 2 days ago

VIEW JOBS 8/12/2020 12:00:00 AM 2020-11-10T00:00 <p><strong>Who are we?</strong></p><p>NowPow is a women-owned and led technology company that powers communities with the knowledge people need to get well, care for others, and manage with disease. The multi-sided Software-as-a-Service (SaaS) platform seamlessly integrates with electronic health records to identify patients’ self-care needs, generate highly matched referrals, share referrals with community partners, and track referral status to close the loop on care. By making community resources visible to the people who need them the most, NowPow nurtures healthier, more vibrant communities.</p><p><strong>The Role:</strong></p><p>As a Security and DevOps Engineer at NowPow, you will be responsible for NowPow’s Azure environment and costs, NowPow’s HIPAA compliant security program, and managing our build, automation, and test pipelines.</p><p>You will build tools to optimize and manage our Azure cloud environment. You will own NowPow’s security program and document, certify, and explain the program to our customers while managing its activities (including automated scanning, penetration tests, and certification processes). You will own and manage our platform automation, including deployment/CI pipelines and build/test automation processes.</p><p>As a growing startup, you will need to own all things Azure for our teams and help us to identify missing skills and new processes as our systems grow. You will be responsible for our platform’s security, monitoring, and costs.</p><p>An ideal candidate will have 2+ years of experience using Microsoft Azure as a hosting platform and expertise in using cloud infrastructure frameworks is required.</p><p></p><p><strong>What you’ll do:</strong></p><p><strong>Monitor and manage the NowPow Platform’s Hosting Environment:</strong></p><ul> <li>Monitor activity within the NowPow’s Azure cloud environment</li> <li>Optimize and monitor our costs and plan and implement cost saving initiatives with engineering leadership</li> <li>Manage NowPow’s system monitoring solutions and help us go from 99% uptime to five-nines (99.999% uptime)</li> <li>Monitor and automate platform scaling to improve performance and optimize costs</li> <li>Inventory and manage all cloud resources and archive and delete as needed</li> <li>Evaluate advancements in cloud technologies and share with our teams</li> </ul><p><strong>Run the NowPow Platform Security Program:</strong></p> <ul> <li>Partner with our operations team on HIPAA security and privacy monitoring activities</li> <li>Manage NowPow’s recurring security activities (including automated scans and tests, penetration testing, etc.…)</li> <li>Work with our Sales team on customer security review processes and RFP/RFI questions around security</li> <li>Own and document overall platform security and review with customer IT teams as needed</li> <li>Evaluate security compliance programs (such as HITRUST, SOC2, etc…) and work across departments to implement and manage </li> </ul><p><strong>Support our Engineering, QA, Analytics, and Product Support teams:</strong></p><ul> <li>Partner with the Architecture and R+D team to test new Azure features and build new solutions as needed</li> <li>Automate more of the customer provisioning process with our Product Support team</li> <li>Work with our QA team to update our automated testing pipelines and strategy</li> <li>Coordinate with engineering to improve our CI build and test pipelines</li> </ul><p><strong>Requirements</strong></p><p><strong>What will make you successful:</strong></p><ul> <li>BS or MS in computer science, or equivalent.</li> <li> 2+ years of DevOps experience with the Azure cloud infrastructure with extensive cloud infrastructure framework experience required</li> <li>CI/CD experience with TeamCity, Jenkins, TFS, or other CI frameworks</li> <li>Experience with deployment automation tools (like Octopus or Azure DevOps) is preferred</li> <li>Scripting and environment automation experience required</li> <li>Experience working with security compliance programs such as HITRUST, SOC2, ISO 27001, FedRAMP and PCI is preferred</li> <li>Excellent verbal and written communication skills.</li> <li>Comfortable adopting to new technologies quickly</li> </ul><p></p><p><strong>Benefits</strong></p><p><strong>Why NowPow?</strong></p> <p>We work at NowPow because<i> <strong>we care</strong>! </i> NowPowers are passionate about our mission and are excited about the opportunities and challenges we face. At NowPow, we cultivate a culture of collaboration and respect, where everyone is a valued team member.</p> <p>Our people and our culture are important to us and make working at NowPow special. We invest in the self-care of our team and provide competitive benefits to support this. We celebrate our successes every week with a company wide happy hour on Fridays and recognize those who went above and beyond in their work. Outside of work, we have fun through company events such as laser tag, ice skating and heading to the ballpark for beautiful weather and a baseball game! </p> <p>We are looking for highly motivated and hard-working individuals to join our team and help us connect health care to self-care. Apply now to join our growing team!</p> Nowpow Chicago IL

Security Operations (Secops) Engineer

Nextcapital