Returning Candidate?

Information Security Engineer

Information Security Engineer

Job ID 
2017-3950
# Positions 
1
Location 
US-CA-Dublin
Experience (Years) 
5
Posted Date 
9/18/2017
Category 
Information Technology - Security

More information about this job

Overview

CallidusCloud is the global leader in cloud-based sales, marketing and learning solutions. CallidusCloud enables organizations to accelerate and maximize their lead to money process with a complete suite of solutions that identify the right leads, ensure proper territory and quota distribution, enable sales forces, automate configure price quote, and streamline sales compensation — driving bigger deals, faster. Over 5,400 organizations, across all industries, rely on CallidusCloud to optimize the lead to money process to close more deals for more money in record time.

 

CallidusCloud is looking for a Information Security Engineer to join our growing team in Dublin, CA. You will be part of a Information Security Team focusing on both Corp IT and Saas environments.

Responsibilities

  • Develop and maintain security and privacy self-assessments for CallidusCloud services.
  • Implementing, managing, and developing security tools.
  • Developing and implementing a data leak prevention program
  • Perform audits and vulnerability assessments
  • Complete due diligence assessments and information security questionnaires for prospective and current clients in a timely and accurate manner
  • Develop, perform, and analyze vulnerability assessments and penetration tests using generally accepted tools, and recommend remediations.  
  • Review and enhance security policies that cover physical and logical access to systems and the management of private data.  
  • Perform IT risk assessments, incident investigations, root cause analyses, and forensics.  
  • Partner with internal teams to ensure successful security and compliance programs that align with client and regulatory compliance requirements
  • Assist with regular and periodic internal risk assessments and SOC Audits
  • Evaluate risks that the applicable vulnerabilities pose to the organization and understand the technical implementation details in order to assess and recommend security control improvements or identify mitigating controls
  • Assist with remediation of control deficiencies identified during the audit process.
  • Develop incident response process that effectively prioritizes by highest risk.

Qualifications

  • 5+ years’ professional experience with 3+ years involving security, risk management, compliance, and privacy of non-public personal data.
  • Experience with IT security and privacy risk assessments and audits of IT general security controls.
  • Good working knowledge of infrastructure security concepts including firewalls, DMZs, intrusion detection/prevention systems, network security, application security concepts, password management, RBAC, access provisioning, SIEM and OWASP.
  • Experience with Splunk ES is a plus.
  • CISA, CISM, CISSP or CIPP certificate a plus.
  • Demonstrated experience with technology industry compliance standards and regulations as they relate to company's services such as ISO27001/2, HIPAA, SOC 1/2.
  • Experience with the phases of the software development lifecycle.
  • Experience with common vulnerability scanning and penetration testing tools.
  • Knowledge of common computer security issues, including network and application vulnerabilities.
  • Knowledge of Linux and its security a plus.
  • Knowledge of VMWARE and Windows Server security a plus.
  • Post secondary qualifications involving technical analysis, financial services, problem solving, and writing.  
  • Thorough understanding of computer networking, routing, and protocols.
  • Experience with HIPAA a plus.

Competencies:

  • Interpersonal skills and team player to maintain collaborative relationships throughout the company and with customers.
  • Experience in a customer-facing, support, consulting, or sales role.
  • Attention to detail, especially with written work such as legal contracts and customer-facing communications.
  • Ability to think and work analytically.
  • Ability to work independently.
  • Ability to document policies, procedures, and technical diagrams.
  • Ability to manage a substantial unplanned workload with short deadlines.
  • Must be capable of working with limited direct supervision.

 

Callidus Software (d.b.a CallidusCloud) is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, religion, color national origin, sex, age status as a protected veteran, or status as a qualified individual with disability.