Job Directory Optimizely Staff IT Security Engineer

Staff IT Security Engineer Optimizely
San Francisco, CA

Optimizely is a company that develops a progressive delivery and experimentation platform.

Companies like Optimizely
are looking for tech talent like you.

On Hired, employers apply to you with up-front salaries.
Sign up to start matching for free.

About Optimizely

Job Description

Job Description

Security is in the foundation of over 3000 customers' trust in Optimizely. In this role, you will design, build and run the technical controls for our Information Security Program. You will ensure that security is baked into all of the business processes and IT infrastructure at Optimizely. This is a great opportunity for you to have an impact across an entire company and build a world-class information security program.

The Work:

* Develop, document and ensure operational excellence in support of security policies

* Build tooling to support security procedures including client software selection, configuration and implementation as well as client monitoring and remediation

* Elevate issues to security organization and drive resolution either in support of existing procedures or through the development of appropriate processes

* Automate security functions including IAM and NAC

* Execute vulnerability scanning of all endpoints on the corporate network and remediate according to defined security policy

* Support audits including information gathering and remediation as part of maintaining Optimizely security compliance frameworks

* Ensure client OS on Optimizely network are configured in accordance with security best practices

* Develop monitoring and metrics to ensure security lapses are captured and remediated appropriately given the severity or level of risk

* Manage projects as needed to support security initiatives within the corporate IT environment

* Support a culture of security by evangelizing best practices and working with stakeholders to drive impactful change

* Attends conferences or trainings to ensure security knowledge is current and forward thinking

Desired skills/knowledge:

* Anti-malware and security endpoint clients (e.g. Symantec, Carbon Black, Cylance)

* Identity Management (e.g. Oracle Identity Manager, Sailpoint)

* SIEM/Log aggregation (e.g. Sumo Logic, Splunk)

* Vulnerability management tools (e.g. Tenable Nessus, Qualys, Rapid7)

* NAC (e.g. Cisco ISE, ClearPass)

* Single Sign-On/Multi-Factor Authentication technologies (e.g. Okta, Ping Identity, Duo Security)

* Firewall (e.g. Cisco ASA, PaloAlto Networks Firewalls)

* Scripting language (e.g. Powershell, Pythong, Bash)


* Ability to collaborate with multiple functions in the development and implementation of changes to clients or practices in support of security best practices (e.g. patching, web filtering, alerting and remediation)

* Able to script and automate regular procedures to ensure consistency, accurate and precise execution

* Able to work with outside vendors and across departments and functions in the execution of security initiatives or assessments of the corporate IT environment

* Able to create and maintain accurate, intelegable documentation in support of corporate IT security policies and procedures

* Availability to work after hours or be on call as needed

* Deep technical acumen including management of all endpoints on corporate network, SaaS infrastructure and public internet facing systems

About Optimizely

Optimizely is a company that develops a progressive delivery and experimentation platform.

500 employees

631 howard street

Let your dream job find you.

Sign up to start matching with top companies. It’s fast and free.