Senior Security Assurance Engineer

Overview

Use your information security expertise to help drive our assurance program by performing technical audits across the enterprise. Be part of the team that identifies risks and develops mitigation strategies to help ensure the success of the business. Use your experience and track record of influencing without authority, dealing with ambiguity, and balancing competing goals and objectives from multiple organizations in order to find common value for each group

Responsibilities

• Perform technical audits for compliance to policies, standards, and other requirements, both internal and external to the organization
• Review and report on audit results, working with colleagues and the business for plans on reaching compliance
• Participate in defining and implementing technical security policies, procedures, standards, and guidelines based on knowledge of best practices, technical requirements, and compliance requirements
• Work with our legal and contracts teams to address security requirements from our customers and those we want our suppliers to follow

Requirements

• 7+ years of technical, hands-on engineering, risk management, and assurance/compliance experience in information security
• Experience with technical security auditing, compliance reviews, and security assessments
• In-depth, technical knowledge of information security, security tools and systems, security control implementation, application security, and computer network access technologies
• In-depth, technical knowledge of data protection and integrity, operating systems and network security, authentication, security protocols, practices, and standards
• Strong interpersonal and communication skills to work effectively with IT and business units; ability to bridge communications between technical IT team members and compliance team members
• Strong attention to detail, customer orientation, communication, and presentation skills including the ability to listen and quickly translate business needs into solutions and build effective working relationships
• Strong, self-motivated and productive team player with ability to thrive in a dynamic environment
• CISSP, CISA, GIAC, or equivalent certification
• Bachelor’s in computer science, information management, or related field

Recommended Qualifications

• Technical certifications that support penetration testing such as CEH, OSCP/OSCE, GPEN/GXPN/GWAPT
• Information security certifications such as CISSP, SSCP, GIAC, GSE
• In-depth understanding of layer 2-7 communication protocols, common encoding and encryption schemes, and algorithms
• Previous software development experience to support penetration testing
• Proficiency in any of the following languages: C#, Python, Ruby, Perl, Bourne/Bash, PowerShell, Visual Basic, JavaScript, SQL, Java

About Esri

Our passion for improving quality of life through geography is at the heart of everything we do. Esri’s geographic information system (GIS) technology inspires and enables governments, universities, and businesses worldwide to save money, lives, and our environment through a deeper understanding of the changing world around them.

Carefully managed growth and zero debt give Esri stability that is uncommon in today's volatile business world. Privately held, we offer exceptional benefits, competitive salaries, 401(k) and profit-sharing programs, opportunities for personal and professional growth, and much more.

Esri is an equal opportunity employer (EOE) and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law.

If you need a reasonable accommodation for any part of the employment process, please email humanresources@esri.com and let us know the nature of your request and your contact information. Please note that only those inquiries concerning a request for reasonable accommodation will be responded to from this e-mail address.

#LI-AL1