CLEARs mission is to strengthen security & create frictionless experiences for consumers. We believe you are you & by using your biometrics - your fingerprints, eyes, & face - we keep you moving. Imagine a world where you can do virtually everything you need to breeze through the airport, buy a beer at the game, check-in at the doctors office, access your office building, & more without ever pulling out your wallet or phone. Now in 60+ airports & other venues nationwide, you are your ID, credit card, ticket, reservation & more with CLEAR.
Were defining & leading an entirely new industry, obsessing over our customers, & investing in great people to lead the way. Recently named on CNBCs Disruptor 50 List & winner of the SXSW Interactive Innovation Award, we're working tirelessly to create frictionless customer experiences for our 4+ million members across the country.
The Senior Infrastructure Security Engineer will be responsible for coordinating with all aspects of the company to assess, design, & implement various security processes & controls. You & your team will be responsible for reviewing & testing our new services before release, partnering closely with our infrastructure & development teams to produce innovative & secure solutions. The right person for this role has a strong drive to solve security challenges within a rapidly expanding environment, & the desire to implement best-in-class security measures using cutting edge technology. Additionally, the right person has a strong track record of delivering high-quality security solutions in a hyper-growth environment where priorities shift quickly.
What You Will Do:
- Coordinating with all aspects of the company to assess, design, & implement various processes & controls of the companys core corporate infrastructure/network security & business continuity programs.
- Evaluating, designing, & deploying security tools to support: vulnerability/patch management, version/change management, advanced anti-malware, network IDS/IPS, security information & event monitoring systems.
- Lead threat modeling exercises of new & evolving technologies within our production cloud & physical environments.
- Building automated tools & infrastructure for automating incident response & vulnerability remediation.
- Creating clear & concise documentation to formalize security processes, establish baselines & develop standards.
- Perform risk assessment & coordination of critical changes to our infrastructure, controls, & ensure proper implementation.
Who You Are:
- You have at least 3 years of experience in security engineering experience with at least 2 years using cloud/PaaS technologies (AWS, GCP, Azure, Kubernetes).
- Experience developing, implementing, & testing the effectiveness of controls to mitigate advanced attacks against corporate Mac & Windows Systems.
- Strong understanding of Group Policy, Jamf, firewalls, intrusion detection & prevention, endpoint security, technologies.
- Strong understanding of networks, both traditional & software defined, TCP/IP networking including routing, subnetting, VPN, packet filtering/firewalling. Experience with Palo Alto & Cisco networking solutions in a plus.
- Operational knowledge of endpoint, systems, databases, orchestration/configuration as code technologies (e.g. Ansible, Puppet, Chef, Terraform), & network security engineering best practices.
- Solid problem solving & analytical skills; able to quickly digest issues encountered & recommend an appropriate solution.
- Experience in using scripting languages such as Python, BASH, or PowerShell to automate tasks & manipulate data.
- Experience with AWS & SoA
- Experience on a red team
- Experience with PCI & FedRAMP compliance
- Experience conducting third party assessments of vendors & SaaS apps
- Experience with securing mobile devices & applications