IT Security Engineer

Revenue Grid is a Salesforce-native customer engagement toolset that helps you lead your team to repeatable revenue. Covering the full sales cycle from getting the first touch to closing and upselling, Revenue Grid allows you to analyze, execute, and lead your growth strategy. We are a US-Ukrainian software development company, headquartered in the USA. Revenue Grid is looking for an IT Security Engineer to work on the next generation of its product line — solution for enterprise and consumer market operating as a massively scalable service on Windows Azure.

Responsibilities:

• Implementing, testing and operating advanced software security techniques in compliance with a technical reference architecture
• Identify weaknesses and potential threats to existing information security toolsets
• Perform continual testing, code-review, security assessments, and risk analyses on current systems to determine potential problems or security threats
• Conduct cloud security reviews and network security assessments
• Respond to Security Incident and Event Management alerts by investigating and analyzing potential cybersecurity incidents
• Supporting various toolsets including Vulnerability Scanners (e.g. Burp Suite scanner, Detectify, etc.), SIEM, DLP, WAF, Malware Protection, etc.
• Work as a security engineer in IT Security Operations (preparation and writing of documentation, policies, guides)
• Conducting security awareness training for employees
• Assignment to specific project activity to deliver new features or Security Tools
• Stay up-to-date on information technology trends and security standards

Required Position Skills and Competencies:

• At least 3 years’ experience in IT / Information Security
• Familiar with agile SDLC and applicability of security compliance requirements
• Technical skills to design and implement Microsoft Azure Security services with hands-on experience on several of the items outlined below: Azure Security Center, Azure AD / O365 / SQL security, Configuring Identity and Access, Securing Data and Application, Azure Monitor, Log Analytics, AppInsight, Cloud App and Network Security, Application VPN Gateways, Azure Firewalls, Intune, Update Management, Azure Sentinel, etc.
• Network administration skills to test internal systems such as firewalls and IPS/IDS devices to ensure networks are safe
• Experience in SIEM platforms and knowledge of working with logging, monitoring
• Knowledge of risk and security frameworks, privacy standards, governances, and best practices (e.g., NIST, ISO, SOC2, GDPR, CIS, etc.).
• Encryption technologies, ethical hacking, and penetration testing experience is highly appreciated
• Project management and communication skills
• At least Intermediate level of written and spoken English

Will be a big plus:

• Microsoft Azure certification (Azure Security Engineer AZ-500)
• Experience implementing security standards for a SaaS company that has passed multiple security certifications.
• Common Knowledge of programming languages: C, C++, C#, Java, SQL, Python, etc. and Windows, UNIX and Linux operating systems
• Experience implementing cloud security standards (ISO 27017).
• Experience implementing privacy standards (GDPR, ISO 27001, Privacy Shield, SOC2).
• Any of the following certifications: CISA, CISSP, CISM, or CCSP.

Benefits&Perks:

• A friendly, informal, and knowledge-sharing environment with open-minded people around you;
• Chance to join a team of professionals in a company globally recognized for its cutting-edge products;
• Dynamic opportunities for professional growth;
• A worthy salary;
• Unlimited vacation;
• Great medical insurance;
• Partly or fully paid extra professional training and courses (when needed).