PaySimple seeking a Security Engineer with a strong knowledge of IT administration to support, test, and promote security for our multiple environments. The primary mission is to prevent hackers from infiltrating company information and to ensure compliance with relevant security standards. A secondary mission is to maintain our most sensitive IT environments and support our software development team.
You
You gain great satisfaction from identifying, reporting, and correcting security flaws in networks and systems. You enjoy working with other people to minimize target areas and help them understand the importance of security. You are excited about IT security, and are ready to expand your knowledge and creativity in the field. You have also paid your dues fighting fires in the trenches, have a great understanding of different operating systems, and now you are ready for the opportunity to put your knowledge and creativity to the test.
Us
PaySimple is a rapidly company building a top-flight engineering team. We are very serious about security and continually raise the bar on our team and systems.
Where
PaySimple is located in Denver’s LoDo district. Our collaborative, open-plan office space is filled with high-energy, talented people who enjoy our weekly lunches, table hockey, and hanging out with their co-workers.
Experience and Skills
Must Haves:
- Bachelor’s degree in Information Technology or related field, or a combination of certifications and experience that equate to a degree
- Working knowledge of:
- nmap
- Burp-Suite
- Metasploit
- Microsoft Active Directory
- Office 365
- LAN/WAN/Wi-Fi, SNAT, NAT, DNS, DHCP, etc.
- Firewall and VPN configuration
- Linux
- Cloud architecture and AWS administration
- Logging and log analysis
- Professional certifications such as MCSA
- Network administration skills to test internal systems such as firewalls
- Encryption technologies, ethical hacking and penetration testing
- Audit experience with key standards such as HIPAA, PCI, and/or SOC 2
- Proven ability to audit an IT environment and provide security and process recommendations
- Ability to learn quickly
- Comfortable working at a small dynamic company
- Ability to document your work in detail
- Crisis management when required
- Can use good judgment to solve problems where protocol might not exist
- Solid communication skills and expertise to translate technical jargon into business familiar language
Nice to haves:
- CEH, CompTIA Security+, OSCP, CISSP, and/or CISM certification
Responsibilities – Security:
- Identify weaknesses and potential threats to existing information security
- Perform continual testing on current systems to determine potential problems or security threats
- Prepare reports for internal clients detailing the security issues, making recommendations and identifying solutions
- Conduct cloud security reviews and network security assessments
- Provide advice on hacking tools and techniques including advanced malware detection
- Keep up to date with the latest thinking on secure coding and cyber-security issues
- Support the business with a range of compliance requirements
- Assist in regulatory compliance audits, including HIPAA, PCI, etc.
Responsibilities – IT Administration:
- Provide leadership in the resolution of technical support issues
- Maintain, monitor and troubleshoot physical and virtual server infrastructure (Windows/Linux)
- Maintain monitor and troubleshoot company network based services: File and Print services, Office 365, Active Directory, DHCP, DNS, etc.
- Configure, maintain, monitor, and troubleshoot Windows and Mac OS software deployments
- Configure, maintain, monitor, and troubleshoot patching and general OS hardening
- Provide and maintain documentation of processes, architecture, and configurations
- Develop and provide training and technical documentation for staff members
- Work with vendors in the research, development and implementation of server technologies
- Work with department leaders implementing new software and hardware technologies