This job post is closed and the position is probably filled. Please do not apply. Work for Bigcommerce and want to re-open this job? Use the edit link in the email when you posted the job!
๐ค Closed by robot after apply link errored w/ code 403 2 years ago
As an Ethical Hacker youโll be part of the team responsible for ensuring that our clientsโ data and our platform are protected from vulnerabilities, in compliance with industry standards and applicable laws. Our mission is to help businesses succeed with their online stores and โSell Moreโ. We want to make sure credit card data is safe and stored and transferred in a PCI-compliant manner. We want our security team to be seen as thought leaders and innovators, not just following the letter of regulations but thinking beyond them. This role will be the technical interface between engineering and the internal requirements of security audit and compliance. The mission is โEveryday is audit dayโ.\n \nResponsibilities:\nYou will take ownership of Detection/Prevention measures, and ensure their correct operation.\nSNORT IDS, Nexpose Scans (Network scans), File Integrity Monitoring, Netsparker (Application scans)\nAssist with the development of security-related policies.\nYou will be responsible for coordinating our response to security incidents and for internal pen testing\nYou will develop programs to educate the engineering staff on the changing landscape of security\n \nRequirements:\nDegree in Computer Science or equivalent experience.\n3+ years working as a Security Engineer in high-volume, high-profile environment\nCurrently hold or are willing to obtain GPEN, CEH or equivalent. This role would also be working towards completion of the CISSP requirements.\nExperience with PCI/SOX compliance and audits.\nFamiliarity with Safe Harbor requirements\nDeep understanding of web application architecture and how to detect vulnerabilities and fix them.\nExperience with common monitoring tools such as Nagios, New Relic, Graphite and statsd.\nExpert in shell scripting and at least one of the following : Perl, PHP, Python, or Ruby\nExperience in tracking common vulnerabilities and security fixes\nA team player, fast learner, with a focus on getting stuff done. \n\n#Salary and compensation\n
$100,000 — $150,000/year\n
\n\n#Benefits\n
๐ฐ 401(k)\n\n๐ Distributed team\n\nโฐ Async\n\n๐ค Vision insurance\n\n๐ฆท Dental insurance\n\n๐ Medical insurance\n\n๐ Unlimited vacation\n\n๐ Paid time off\n\n๐ 4 day workweek\n\n๐ฐ 401k matching\n\n๐ Company retreats\n\n๐ฌ Coworking budget\n\n๐ Learning budget\n\n๐ช Free gym membership\n\n๐ง Mental wellness budget\n\n๐ฅ Home office budget\n\n๐ฅง Pay in crypto\n\n๐ฅธ Pseudonymous\n\n๐ฐ Profit sharing\n\n๐ฐ Equity compensation\n\nโฌ๏ธ No whiteboard interview\n\n๐ No monitoring system\n\n๐ซ No politics at work\n\n๐ We hire old (and young)\n\n
\n\n#Location\nSan Francisco
# How do you apply?\n\nThis job post has been closed by the poster, which means they probably have enough applicants now. Please do not apply.