Senior Security Engineer (USA)
- Full-time
Company Description
When you join Turnitin, you'll be welcomed into a company that is a recognized innovator in the global education space. For more than 20 years, Turnitin has partnered with educational institutions to promote honesty, consistency, and fairness across all subject areas and assessment types. Over 16,000 academic institutions, publishers, and corporations use our services: Gradescope by Turnitin, iThenticate, Turnitin Feedback Studio, Turnitin Originality, Turnitin Similarity, ExamSoft, Ouriginal and ProctorExam.
Turnitin has offices in Australia, India, Indonesia, Germany, Japan, Korea, Mexico, the Netherlands, the Philippines, Sweden, Ukraine, the United Kingdom, and the United States. Our diverse community of colleagues are all unified by a shared desire to make a difference in education. Come join us, and let's make change together.
Job Description
We are looking for someone who brings passion, significant security experience, attention to detail, technical leadership and the willingness to continuously learn. This role reports to the Sr. Director of Security and Compliance.
The Senior Security Engineer position is a hands-on role that requires a high level of technical expertise. Responsible for a broad range of tasks including a mix of daily operational tasks as well as strategic planning, engineering, and operational functions. This position requires being well versed in technical security engineering, operations and management of information security tools and processes such as Incident Response (IR), Security Information and Event Management (SIEM), Intrusion Detection System (IDS), Cloud Security Configuration, Data Loss Prevention (DLP), Vulnerability Management, Identity and Access Management (IAM), Privileged Access Management (PAM), Endpoint Security, file integrity monitoring, vulnerability and risk assessment, penetration testing, malware analysis, digital forensics, and encryption.
As a Senior Security Engineer, your duties and responsibilities will include:
Advise on security strategy and secure design.
Act as the SME for security requirements and solutions on infrastructure and application projects.
Work closely with the IT leaders, engineering and devops teams to ensure network and application design decisions comply with organizational policies, and appropriately mitigates security risk.
Provide information security expertise to influence the interpretation, development, acquisition or implementation of complex technical solutions, including security products.
Develop, define, and communicate security requirements for cloud architecture, enterprise software, IT services and product design.
Provide expertise on security requirements in system development activities, vulnerability management, policies, standards and procedures.
Work to define security requirements for baseline system configurations.
Research and recommend security solutions, products, and security controls.
Provide mentoring and training to junior security staff members.
Qualifications
A minimum of 7 years’ experience in IT and information security, 5 of which must be information security.
Strong relationship management experience in influencing and motivating internal functions with minimal direction.
Proven track record building productive relationships with key business leaders and senior stakeholders in technology as well as the business.
Ability to provide a balance of strategic planning and tactical execution.
Retains up-to-date knowledge of security architecture and security risk trends.
Knowledge of CIS and/or NIST frameworks
Relevant industry security certifications such as AWS Certified Security Professional, Certified Cloud Security Professional (CCSP), Offensive Security Certified Professional (OSCP) or CISSP
Understanding of security principles with the ability to communicate security concepts to non-technical and technical audiences with ease.
Preferred Experience
At least 3 years of AWS experience
Experience with serverless technologies
Knowledge of compliance frameworks such as SOC2, FedRamp / StateRamp or ISO 27001
Threat Hunting experience
Experience with hardening and security MacOS, Linux and Windows systems
Experience programming in languages such as Go, Java, Ruby or Python
Hands-on experience with deployment tools such as Chef, Puppet or Ansible.
Bachelor's degree or equivalent
Excellent communication, facilitation, writing and public speaking skills.
Project management skills and experience.
Previous experience coordinating penetration tests
Additional Information
Our Mission is to ensure the integrity of global education and meaningfully improve learning outcomes.
Our Values underpin everything we do.
- Customer Centric - We realize our mission to ensure integrity and improve learning outcomes by putting educators and learners at the center of everything we do.
- Passion for Learning - We seek out teammates that are constantly learning and growing and build a workplace which enables them to do so.
- Integrity - We believe integrity is the heartbeat of Turnitin. It shapes our products, the way we treat each other, and how we work with our customers and vendors.
- Action & Ownership - We have a bias toward action and empower teammates to make decisions.
- One Team - We strive to break down silos, collaborate effectively, and celebrate each other’s successes.
- Global Mindset - We respect local cultures and embrace diversity. We think globally and act locally to maximize our impact on education.
Global Benefits
- Flexible/hybrid working
- Remote First Culture
- Health Care Coverage*
- Tuition Reimbursement*
- Competitive Paid Time Off
- 4 Self-Care Days per year
- National Holidays*
- 2 Founder Days + Juneteenth Observed
- Paid Volunteer Time*
- Charitable contribution match*
- Monthly Wellness Reimbursement/Home Office Equipment*
- Access to Modern Health (mental health platform)
- Parental Leave*
- Retirement Plan with match/contribution*
* varies by country
Seeing Beyond the Job Ad
At Turnitin, we recognize it’s unrealistic for candidates to fulfill 100% of the criteria in a job ad. We encourage you to apply if you meet the majority of the requirements because we know that skills evolve over time. If you’re willing to learn and evolve alongside us, join our team!
Turnitin, LLC is committed to the policy that all persons have equal access to its programs, facilities and employment. All qualified applicants will receive consideration for employment without regard to age, race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.