Security Tools Engineer - San José, Costa Rica - Zuora

Zuora

Empresa verificada

San José, Costa Rica

hace 1 semana

Publicado por:

Andrea Rodríguez

beBee Recruiter

Descripción

Over the past 15 years, we have seen a shift in the focus of business models across every industry - from selling physical products via one-time transactions to monetizing services via ongoing customer (aka subscriber) relationships.

This is the "Subscription Economy" a phrase coined by our CEO, Tien Tzuo, he even wrote the book on it:
_Subscribed_.

Companies have realized that the path to growth going forward is to establish direct, digital relationships with their customers, and monetize these relationships through an ever growing set of digital services.

Our vision is simple:

we call it "The World Subscribed." It's the idea that one day every company will join the Subscription Economy - a $1.5 Trillion opportunity by 2025 according to UBS.

Our mission:
to power the world's best companies to win in the Subscription Economy.

THE TEAM

Our Information Technology (IT) team is Zuora's internal engineering organization, responsible for creating technology experiences that connect our teams, drive business alignment and build a stronger, more collaborative work "place." With a cloud-first approach, we empower our global ZEOs with increased productivity and self-service to enable company growth, scale and flexibility while hardening our security and compliance posture.

THE OPPORTUNITY

As a Security Tools Engineer at Zuora, you maintain and implement security policies and manage the lifecycle of the security tools that protect our systems.

As a Security Tool Engineer, you will collaborate with ZEUS, other Platform, and security teams to enforce the security controls in the infrastructure.

In addition, you will run and deploy tools to extend our operational excellence in securing endpoints, offices, data centers, and cloud environments.

You'll find work at Zuora to be uniquely rewarding because of our company culture and your great co-workers.

OUR TECH STACK:
AWS, Azure, GCP, Active Directory, Okta, RSA, OneLogin

WHAT YOU'LL ACHIEVE

Serve as the Subject Matter Expert (SME) for those solutions, maintaining documentation and advising others on their underlying technology and operation
Build and maintain security tools for internal use that enable the Cyber Fusion Center to operate at scale and speed.
Operate, troubleshoot, install, and configure endpoint security solutions (e.g. Antivirus, Application Whitelisting, Host Intrusion Prevention and Firewall, Forensic Analysis Tools, Advanced Malware Solutions, IOC Sweepers).
Responsible for scheduling, testing, and implementing enhancements or new releases of the endpoint security stack
Coordinate with team members to maintain software and operate solutions.
Provide regular and effective progress updates to and work closely with management to communicate any delivery risks or issues.
Write custom scripts to introduce automation and reduce the need for human intervention
Engage with teams to identify shared problems and develop automation.
Manage the effectiveness of tooling, rationalizing tools as needed, and identifying new tool needs as necessary.
Strong operational knowledge of Windows Server, Windows Client, Linux, Mac, iOS, Android Operating Systems
Ensure the 24x7 availability of the security tools and support the team
In this role, you'll be responsible for ensuring Zuora's suite of endpoint security tools are deployed on every supported endpoint
Responsible for scheduling, testing, and implementing enhancements or new releases of the endpoint security stack
As a member of the Enterprise Security Team, you will be focused on protecting Zuora assets from threats
Prepare and document standard operating procedures

WHAT YOU'LL NEED TO BE SUCCESSFUL

8+ years of experience in security tooling, design and maintaining the security tooling suites of products.
5+ years of experience understanding of Active Directory Security configuration and compliance settings, Active Directory & LDAP authentication configuration and troubleshooting experience
3+ years of experience working in public cloud platforms: AWS, & Azure in a production environment
Scripting and coding skills with one or more of the following: Bash, & Python.
In depth understanding of the policies configuration of Endpoint Platform/Endpoint Detection and Response Products.
Network and hostbased Data Loss Prevention (DLP) tools and services.
Privilege Escalation Technologies (e.g. UAC, LAPS, etc)
Client Logging Tools and Configuration (e.g. AuditD, NXLog, etc)
In depth knowledge of Kaseya, Workspace ONE, Jamf, Rapid7, Digital Guardian, 1Password, CyberArk, SentinelOne, and Carbon Black
Industry certifications are a plus: CISSP, Security+ etc.
Bachelor's degree in computer science, mathematics, related field or equivalent years of relevant experience

Benefits