The Cybersecurity Engineer at EagleView is a highly technical role and is responsible for ensuring the security for a broad range of environments. As the perfect candidate you are a self-starter who can independently and collaboratively work with little direction in a fast-moving environment. Key responsibilities include implementing code review processes and tooling and being a trusted advisor to the Engineering teams on secure coding practices. You bring your knowledge to the team and implement environment hardening, incident response and forensic analysis. As the member of a smaller team, you will need to manage work efforts end-to-end, so the ability to PM your work is important. Strong collaboration with Engineering, CloudOps and DevOps teams is essential. You oversee vulnerability scanning, testing, and validation and make tool/solution recommendations to the security team. Your ability to review and assess our company and third-party partners will provide a key piece of our overall security posture. 

Responsibilities

• Guides and performs security activities including penetration testing and vulnerability analysis, audits and assessments, code review, static and dynamic testing, and ethical hacking.
• Work closely with engineers to provide expert advice on secure SDLC (automated and manual code-review), Layer 7 security best practices, and ensuring the remediation of vulnerabilities.
• Protect the company and its customers by identifying threats to user experience and user data while proposing mitigations and defenses.
• Provide guidance on hardening end-points, containers, APIs, applications, operating systems (e.g., Windows and Linux) and AWS cloud environments.
• Manage and review perimeter defenses, such as firewalls, WAF's, and IDPS.
• Participate as a key hands-on member in cybersecurity incident response and recovery activities.
• Capacity and tolerance for extreme context switching and interruptions while remaining productive and able to provide effective, safe guidance.
• Maintain knowledge and skills to keep up with the rapidly changing threat landscape.
• Work collaboratively with internal and external departments, vendors, and other key stakeholders. 

• Bachelor's Degree in Computer Science, Cybersecurity, or Information Technology, and 5 years of related experience preferred.
• Experience working as a security or software dev/engineer with knowledge of container, mobile, and API secure development practices is preferred.
• Security testing and vulnerability identification tools including Kali Linux, BlackArch, Metasploit, Burp Suite, Vuln. Scanning, Veracode, etc.
• Experience with multiple programming/scripting languages (Python, Perl, etc.) preferred,
• Knowledge of network and web related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols).
• Experience with configuration management and automation tools is a plus.
• Experience working with cloud environments, such as AWS from both a developer and security perspective.
• Experience in diagnosing and preventing cyber-attacks.
• Excellent written and verbal communication skills.
• Industry related certifications are desirable.