Experience Inc. Jobs

Job Information

FlightSafety International Inc Sr. Security Engineer, Vulnerability Management in Seattle, Washington

Sr. Security Engineer, Vulnerability ManagementIT, InfoSec, Cyber Risk & Business Operations | San Francisco, CA or Seattle, WA or Remote - USThis position is not eligible for employment in the following states: Alaska, Hawaii, Maine, Mississippi, North Dakota, South Dakota, Vermont, West Virginia and Wyoming.Our agreement with employeesDocuSign is committed to building trust and making the world more agreeable for our employees, customers, and the communities in which we live and work. You can count on us to listen, be honest, and try our best to do what's right, every day. At DocuSign, everything is equal. We each have a responsibility to ensure every team member has an equal opportunity to succeed, to be heard, to exchange ideas openly, to build lasting relationships, and to do the work of their life. Best of all, you will be able to feel deep pride in the work you do, because your contribution helps us make the world better than we found it. And for that, you'll be loved by us, our customers, and the world in which we live.The team Our IT, InfoSec, Vulnerability Management team is in the business of trust and security. We create, maintain and operate scalable technology and data solutions that deliver an exceptional experience for our internal & external customers. We embrace Agile principles and values, favor DevOps practices, and view VM practices as building and maintaining trust with our stakeholders, all while we create an infrastructure that scales and supports our growth and ambitious vision. This requires a smart, highly collaborative team who can identify, investigate, and implement new technologies to continue securely scaling our global business.This positionAs a Sr. Security Engineer for Vulnerability Management, you will oversee vulnerability assessments and pen-testing to support compliance audits (PCI, FedRamp, IL4). You will partner with a wide range of functional groups including Compliance, Legal, Security Architecture, Product Security, and Engineering teams. You are a highly motivated individual with strong emotional intelligence and demonstrated experience in high growth, fast-paced organizations. You are experienced with Cloud platforms (Azure, GCP, AWS), Vulnerability Management, Python automation, and API integrations.You have the ability to lead through conflict, take input from multiple stakeholders and deliver solutions required to address complex security issues.This position is an individual contributor role reporting to the Senior Director of Vulnerability Management and is designated Flex.ResponsibilitiesIntegrate telemetry from various source systems (technical assessment tools, inventory and configuration management systems) to measure Vulnerability Management program effectiveness and control gapsEvaluate control effectiveness and providing input to establish treatment plans for remediation of riskCoordinate vulnerability remediation activities with a focus on self-service to promote DevSecOpsProvide tracking details needed to support continuous monitoring program reviewsLead penetration testing engagements by gathering logistics across product environments and track remediation of findingsAutomate compliance scanning and assessment functionsBreakdown problems to re-engineer processesProvide direction to others to design solutions to automate capabilities.Maintain expert knowledge of DocuSign products/services, industry/regulatory standards, Vulnerability Management requirements and assessmentsAlign with the Trust & Security initiatives that drive scale and operational excellenceMaintain strong relationships based on trust and transparency with primary stakeholdersEstablish automated audit policies (CIS/STIG) based on defined baselines, including custom STIG policiesNegotiate appropriate trade-offs and ensure clear accountability, targets, timeline