NYC  SF        Events   Jobs   Deals  
 
  Sign in  
 
 
 

SecurityScorecard // security grading service for orgs
Apply To Job
 
 
 

About SecurityScorecard:

SecurityScorecard is the global leader in cybersecurity ratings, with over 12 million companies continuously rated, operating in 64 countries. Founded in 2013 by security & risk experts Dr. Alex Yampolskiy & Sam Kassoumeh & funded by world-class investors, SecurityScorecards patented rating technology is used by over 25,000 organizations for self-monitoring, third-party risk management, board reporting, & cyber insurance underwriting; making all organizations more resilient by allowing them to easily find & fix cybersecurity risks across their digital footprint. 

Headquartered in New York City, our culture has been recognized by Inc Magazine as a "Best Workplace, by Crains NY as a "Best Places to Work in NYC," & as one of the 10 hottest SaaS startups in New York for two years in a row. Most recently, SecurityScorecard was named to Fast Companys annual list of the Worlds Most Innovative Companies for 2023 & to the Achievers 50 Most Engaged Workplaces in 2023 award recognizing forward-thinking employers for their unwavering commitment to employee engagement.  SecurityScorecard is proud to be funded by world-class investors including Silver Lake Waterman, Moodys, Sequoia Capital, GV & Riverwood Capital.

Role Overview:

We are seeking a skilled & motivated Security Engineer to join our growing security team. You will play a crucial role in enhancing & maintaining our internal security posture, as well as contributing to the security of our products & services. This is a hands-on position requiring a solid understanding of various security domains & the ability to operate effectively in a fast-paced environment.

Key Responsibilities:

As a Security Engineer, your responsibilities will include a range of activities essential to our security program, such as:

  • Implementing, monitoring, & maintaining security controls across our corporate & cloud environments.
  • Participating in the application security program, including supporting security testing, vulnerability management, & secure development practices.
  • Managing & improving our identity & access management (IAM) solutions & processes.
  • Contributing to our incident response capabilities, including participating in security incident detection, analysis, & remediation efforts.
  • Supporting corporate security initiatives, including security awareness training, policy enforcement, & compliance activities.
  • Assisting with the third-party risk management program, including security reviews & assessments of vendors & partners.
  • Performing regular security assessments, vulnerability scans, & penetration testing (or coordinating external tests).
  • Administering & optimizing various security tools & technologies.
  • Collaborating with IT, Engineering, & other teams to ensure security best practices are integrated into daily operations & new projects.
  • Developing & maintaining security documentation, procedures, & runbooks.
  • Staying current with the latest security threats, vulnerabilities, & industry trends.

Required Qualifications:

  • 6+ years of progressive experience in a dedicated cybersecurity role.
  • Demonstrated experience in Application Security (AppSec) principles & practices.
  • Direct experience administering & optimizing key security tools, including Okta (IAM), CrowdStrike (EDR), & Wiz (Cloud Security Posture Management).
  • Proven experience with Cloud Security concepts & best practices (experience with at least one major cloud provider required).
  • Hands-on experience with Identity Management & Access Control systems.
  • Experience participating in Incident Response processes & procedures.
  • Understanding of corporate security principles & their practical application.
  • Experience with third-party risk management processes & security assessments.
  • Solid understanding of networking fundamentals & security protocols.
  • Familiarity with common security frameworks & standards (e.g., NIST, ISO 27001, FedRAMP, StateRAMP).
  • Excellent problem-solving skills & the ability to work independently & as part of a team.
  • Strong written & verbal communication skills.

Preferred Qualifications:

  • Experience with specific security tools & platforms such as:
    • IdP
    • Cloud Service Provider
    • Cloud Security Posture Management tools
    • Endpoint Detection & Response solutions
    • Google Workspace (security features & administration)
  • Security certifications such as Security+, CySA+, CEH, cloud-specific security certifications (e.g., AWS Certified Security Specialty).
  • Experience working in a cybersecurity vendor environment.

Benefits:

Specific to each country, we offer a competitive salary, stock options, Health benefits, & unlimited PTO, parental leave, tuition reimbursements, & much more!

The estimated total compensation range for this position is $135,000 - $160,000 (base plus bonus). Actual compensation for the position is based on a variety of factors, including, but not limited to affordability, skills, qualifications & experience, & may vary from the range. In addition to base salary, employees may also be eligible for annual performance-based incentive compensation awards & equity, among other company benefits. 

SecurityScorecard is committed to Equal Employment Opportunity & embraces diversity. We believe that our team is strengthened through hiring & retaining employees with diverse backgrounds, skill sets, ideas, & perspectives. We make hiring decisions based on merit & do not discriminate based on race, color, religion, national origin, sex or gender (including pregnancy) gender identity or expression (including transgender status), sexual orientation, age, marital, veteran, disability status or any other protected category in accordance with applicable law. 

We also consider qualified applicants regardless of criminal histories, in accordance with applicable law. We are committed to providing reasonable accommodations for qualified individuals with disabilities in our job application procedures. If you need assistance or accommodation due to a disability, please contact talentacquisitionoperations@securityscorecard.io.

Any information you submit to SecurityScorecard as part of your application will be processed in accordance with the Companys privacy policy & applicable law. 

SecurityScorecard does not accept unsolicited resumes from employment agencies.  Please note that we do not provide immigration sponsorship for this position.   #LI-DNI

 
 
 
 
 
About    Feedback    Press    Terms    Gary's Red Tie
 
© 2025 GarysGuide