Using behavioral science-based assessments and machine learning algorithms, pymetrics is reinventing the talent industry by matching job-seekers with roles where they are most likely to succeed. We are at the forefront of an evolving industry, and growing our amazing team to support the mission of using data to unleash one's full potential and remove bias from hiring and talent management.
If you are passionate about solving one of the most fundamental problems of our society, working on hard business problems and being part of an amazing growth story, pymetrics is the place to be!
We are seeking an Information Security Engineer to join our InfoSec team in New York City. You will work closely with the IT, Engineering and Product teams using modern technologies and cloud platforms like AWS to assess the security of our platforms, prepare for and handle security incidents, and implement tools and processes to measure and improve security. You will also work with our data science teams to secure our data, our DevOps teams to identify and remediate security vulnerabilities, and the rest of the organization to drive global information security and compliance. We are trusted by hundreds of employers to securely manage their company data, so this is a crucial role in the company.
About our Team:
The IT and Security team is tasked with maintaining the Information Security Program at Pymetrics by collaborating closely with the rest of the organization to ensure data integrity, security and compliance. We put the right systems in place to monitor security events, scan for vulnerabilities and respond to security incidents. We also help maintain compliance programs like ISO 27001 and GDPR.
Who you are:

• You are a dedicated, highly organized and motivated person who is passionate about technology and security
• You are inquisitive, have a can-do attitude and a remarkable knack for figuring things out and getting things done
• You work well within a team but also individually and with little direction
• You can communicate effectively in both written and oral forms to technical and non-technical audiences
• You can work under deadlines in a fast-paced environment
• You use scripting languages to automate tasks and integrate systems
• You have working knowledge about modern web application architecture and how to secure it (OWASP)
• You understand security frameworks like NIST, and CISYou possess a solid understanding of Linux, network protocols and operations engineering

What you'll do:

• Work closely with various engineering teams to establish, implement and promote security standards to properly secure applications
• Perform regular application vulnerability assessments and guide initiatives to resolve any security flaws
• Examine security logs, improve collection and analysis
• Establish and promote security best practices and general security awareness across multiple development teams
• Work on the improvement and integration of existing tools and development of new toolsInspect, escalate and remediate security incidents
• Correlate suspicious activity, identify false positives and alert on key security metrics
• Audit controls and company standards
• Build things you'll be proud of

What you have:

• 3+ years of experience in information security or related field
• Bachelor's Degree in Computer Science, Information Systems or equivalent experience
• Advanced knowledge and understanding of security engineering, system and network security, authentication and security protocols, cryptography, or application security
• Advanced knowledge of security tools such as intrusion detection systems, vulnerability scanners like Burp Suite, traffic analysis tools and packet sniffers like Wireshark, log collection and analysis like the ELK stack or other SIEM tools
• Knowledge of industry security standards, principles, techniques and technologies (OWASP, NIST, CIS, etc.)
• Knowledge of Linux, scripting and automationKnowledge of cloud computing platforms like AWS
• Proven ability to guide projects that involve multiple development teams

What sets you apart:

• SANS or Certified Ethical Hacker certifications
• Experience using BurpSuite

#LI Remote
Benefits
- Healthcare plan (medical, dental & vision)
- Flexible paid time off
- Family leave (maternity, paternity)
- 401k
- Stock option plan
- Commuter transportation benefits
- Fun, diverse and mission oriented coworkers
Finally, we are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.