CLEARs mission is to strengthen security & create frictionless experiences for consumers. We believe you are you & by using your biometrics - your fingerprints, eyes, & face - we keep you moving. Imagine a world where you can do virtually everything you need to breeze through the airport, buy a beer at the game, check-in at the doctors office, access your office building, & more without ever pulling out your wallet or phone. Now in 60+ airports & other venues nationwide, you are your ID, credit card, ticket, reservation & more with CLEAR.
Were defining & leading an entirely new industry, obsessing over our customers, & investing in great people to lead the way. Recently named on CNBCs Disruptor 50 List & winner of the SXSW Interactive Innovation Award, we're working tirelessly to create frictionless customer experiences for our 4+ million members across the country.
The Senior Platform Security Engineer will be responsible for coordinating with all aspects of the company to assess, design, & implement various security processes & controls. You & your team will be responsible for reviewing & testing our new services before release, partnering closely with our infrastructure & development teams to produce innovative & secure solutions. The right person for this role has a strong drive to solve security challenges within a rapidly expanding environment, & the desire to implement best-in-class security measures using cutting edge technology. Additionally, the right person has a strong track record of delivering high-quality security solutions in a hyper-growth environment where priorities shift quickly.
What You Will Do:
- Coordinate with all aspects of the company to assess, design, & implement various processes & controls of the companys core cloud & infrastructure security & business continuity programs.
- Evaluate, designing, & deploying security tools to support: vulnerability/patch management, version/change management, advanced anti-malware, network IDS/IPS, security information & event monitoring systems.
- Lead threat modeling exercises of new & continuing to evolve technologies within our cloud & enterprise environments.
- Define security requirements & implement controls such as SSO, logging/alerting, & RBAC for 3rd party systems & technologies.
- Build automated tools & infrastructure for automating incident response & vulnerability remediation.
- Perform infrastructure as code reviews & risk assessment of NACLs, Security Groups, IAM, S3, KMS, & other core AWS infrastructure services dont put the business in a risky state.
- Create clear & concise documentation to formalize security processes.
Who You Are:
- 6+ years of experience in security engineering experience with & 2+ years using cloud/PaaS technologies (AWS, GCP, Azure, Kubernetes).
- Strong understanding of firewall, intrusion detection & prevention, endpoint security, technologies.
- Operational knowledge of endpoint, systems, databases, orchestration/configuration as code technologies (e.g. Ansible, Puppet, Chef, Terraform), & network security engineering best practices.
- Solid problem solving & analytical skills; able to quickly digest issues encountered & recommend an appropriate solution.
- Experience in using scripting languages such as Python, BASH, or Go to automate tasks & manipulate data.
- Experience with AWS & SoA
- Experience with PCI & FedRAMP compliance
- Experience conducting third party assessments of vendors & SaaS apps
- Experience with securing mobile devices & applications