Cloud Security Compliance Engineer II Jobs in Waltham, MA at ZoomInfo
Title: Cloud Security Compliance Engineer II
Location: Waltham, MA
Salary: $80K — $100K *
Category: Information Technology
Are you looking for an opportunity to challenge yourself?
At ZoomInfo our employees work hard to ‘define new possibles’, and they are driven by winning. ZoomInfo is a company that got to where it’s at today on the backs of heroic efforts, over the years, by our employees and we are looking for more people to contribute to those efforts.
At our company you’ll see that collaboration is second nature, and you’ll be greeted by a team of incredibly smart, talented, and motivated individuals who will help you define your new best.
You’ll be presented with opportunities to both personally and professionally develop as you build your career. We believe that our employees love to work and love to work here, and that you will like coming to work because of the sense of accomplishment you get from being a part of what we’re building.
You are a fit for our team if you refuse to lose, you seek challenges, and you love to win. We welcome you to join our team ofdifference makerswho are people working with a passion to win together.
ZoomInfo is looking to hire an individual who will join the security team of a rapidly expanding organization with global locations. We are building out a new security focused DevSecOps extension.
A successful candidate will be responsible for security over the entire software development lifecycle: Coaching developers on security practices, tracking vulnerabilities found in code, working with developers firsthand in remediating them, and coordinating with DevOps on improvements to the SDLC to improve overall security posture, reduce time-to-remediation, etc. In addition, the candidate will be responsible for reviewing the cloud security infrastructure and security controls, running assessments using tools or scripts and auditing configuration, settings and design.
The candidate will be part of a larger global security team and work closely with individuals from all sectors of security, helping the team and expanding abilities and expertise.
The ideal candidate is an experienced information security cloud practitioner who is goal-oriented and strives to exceed expectations, with a proven track record of cloud security, SDLC security life cycle and related experience.
Improve secure engineering practices in the engineering organization.
Participate in larger security team and development lifecycle.
Monitor networks and systems for anomalous activity.
Proactively identify gaps in current security posture and develop solutions.
Analyze, document and present solutions meeting our needs. Investigating, responding, and tracking security incidents.
Investigate alerts, anomalies, errors, risks to identify threats, source, determine remediation, and recommend security improvements or actions.
Manage cloud-based security and compliance tools.
Create management-friendly reporting from tools.
Promote standards-based change and problem management.
Collaborate with internal and external parties to get and share information to improve processes and security posture.
Communicate to security team leadership.
Keep management informed with precise, accurate information about security posture and events – no surprises.
Produce design documentation.
Create, document and maintain formal processes to meet certification requirements.
Work across business lines especially with DevOps on integration of products/services.
Developing a secure SDL…