Security Engineer - Remote (US)

← Careers in Engineering at Movable Ink

Movable Ink is a software company that provides marketers with technology and expert services to create unique customer experiences. Founded in 2010, Movable Ink pioneered contextual experiences in email and has powered over 1.5 trillion content impressions worldwide. More than 700 of the world’s most innovative brands rely on Movable Ink to create unique, relevant, and compelling visual experiences across email and web at the moment of engagement.

The Security Engineer, Information Security & Compliance will be a part of the team responsible for planning, implementing and maintaining the firm-wide privacy, security and compliance strategy to protect Movable Ink’s platform. In your role, you'll help Movable Ink identify, understand, manage, and respond to threats to our environment and data.

This includes implementing and maintaining vulnerability management tools, and supporting incident response activities. Additionally, the Security Engineer, Information Security & Compliance will lead a subset of security-related projects to help protect the Movable Ink platform.

Responsibilities:

  • Investigate and help manage remediation efforts for identified vulnerabilities.
  • Manage third-party penetration tests throughout the engagement including remediation.
  • Monitor networks and systems for security threats, through the use of software that detects intrusions and anomalous system behavior.
  • Evaluate and help improve security information and event management tools.
  • Play key role in first response following incident reports or security alerts, including DLP and IDS alerts.
  • Conduct vulnerability scans and perform analysis of scan results
  • Work closely with the Engineering and DevOps teams to remediate vulnerability findings.
  • Monitor logs and help improve logging capabilities.
  • Assist with quarterly security incident response tabletop exercises and related remediation.
  • Advise on and ensure secure coding practices are followed throughout the SDLC process.
  • Help identify and develop meaningful security learning resources and trainings for developers especially.
  • Provide security guidance on new products and technologies.
  • Contribute to client security assessments and advise on custom client security requirements.

Qualifications:

  • Strong technical foundation that includes knowledge across multiple information security domains.
  • Understanding of OWASP top ten vulnerabilities.
  • Familiarity with SIEM, DLP, and/or IDS tools (e.g. Qualys, Threat Stack, CloudTrail etc.).
  • B.S. in Computer Science or related field, or equivalent experience.
  • 2-4 years of experience in vulnerability management or related role.
  • Knowledge of risk assessment tools, technologies and methods.
  • Familiarity with Javascript and Rails vulnerabilities a plus
Apply for this position

Movable Ink provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, sexual orientation, national origin, age, disability or genetics. In addition to federal law requirements, Movable Ink complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment. Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.

Want to See Our Platform in Action?

Request a Demo