Job summary
Job post source
This job is directly from EngFlow
Job overview
The Security Engineer at EngFlow is responsible for ensuring the security of the company's systems and compliance with SOC 2 standards, playing a critical role in protecting infrastructure and customer trust.
Responsibilities and impact
The role involves defining security best practices, managing SOC 2 and FedRAMP audits, overseeing penetration tests, implementing intrusion detection and vulnerability management, collaborating on supply chain security, maintaining the ISMS, handling customer security inquiries, and participating in on-call rotations for security issues.
Compensation and benefits
The position offers comprehensive medical, dental, and vision benefits, a 401k bonus, parental leave, generous vacation, and a fully remote work environment with periodic team gatherings and fun events.
Experience and skills
Candidates need strong analytical skills, advanced knowledge of supply chain and cloud security, experience with SOC 2/FedRAMP audits and penetration testing, expertise in intrusion detection and vulnerability management, familiarity with build systems, DevOps, Linux/Unix shell, and hands-on experience with cloud providers; Terraform experience is a plus.
Work environment and culture
EngFlow has a remote-first culture with a focus on productivity and fun, hosting regular team events and meetups at exciting destinations to foster team bonding.
Company information
EngFlow is a cloud-based service company that accelerates software builds and tests, backed by top investors and founded by key contributors to Bazel, serving startups to Fortune 500 companies with tools to improve developer velocity and build performance.
Team overview
The Security Engineer reports to the Head of Product Engineering and has a dotted line to the CTO, working closely with business and technical teams in a fast-paced environment.
Job location and travel
This is a fully remote position open to candidates in North America or Europe, with occasional team meetups at various global locations.
Unique job features
The role involves working with cutting-edge build systems and cloud security technologies, contributing to SOC 2 and FedRAMP compliance, and participating in a dynamic, growth-oriented tech environment.
Company overview
EngFlow is a company specializing in accelerating software development processes by providing advanced build and test acceleration solutions. They make money by offering cloud-based services that optimize build times, thereby enhancing developer productivity and reducing costs for businesses. Founded with the mission to streamline software development, EngFlow has become a key player in the DevOps and continuous integration/continuous deployment (CI/CD) space. Their solutions are particularly beneficial for large-scale projects that require efficient resource management and faster iteration cycles. EngFlow's innovative approach to build acceleration has positioned them as a valuable partner for tech companies looking to improve their development workflows.
How to land this job
Tailor your resume to highlight your expertise in SOC 2 and FedRAMP compliance management, penetration testing coordination, and cloud security controls, as these are critical for the Security Engineer role at EngFlow.
Emphasize your experience with supply chain security, intrusion detection systems, vulnerability management, and familiarity with build systems like Bazel or Maven to align with EngFlow’s technical environment.
Apply through multiple platforms including EngFlow’s corporate careers page, LinkedIn, and other job boards where EngFlow is posting to maximize your application’s reach.
Connect with current EngFlow employees in the product engineering or security teams on LinkedIn; start conversations by referencing recent EngFlow security initiatives or asking about their approach to SOC 2 compliance to create meaningful engagement.
Optimize your resume for ATS by incorporating keywords such as 'SOC 2 compliance,' 'penetration testing,' 'cloud security,' 'supply chain security,' and specific cloud providers like AWS or GCP to ensure your resume passes automated screenings.
Use Jennie Johnson’s Power Apply feature to automate tailored resume customization, identify all relevant application portals, and find LinkedIn connections for networking, allowing you to focus your energy on preparing for interviews and skill development.
Jennie Johnson works for you!
Here’s what we do to make sure you’re successful:
Targeted Resume Revamp:
We expertly craft your resume to navigate Applicant Tracking Systems (ATS) and showcase your qualifications, making you stand out as a top-tier candidate.
Job Description Dissection:
Unpack the job posting with expert analysis, ensuring your application hits every key requirement.
Bespoke Cover Letter:
Capture the attention of hiring managers with a personalized cover letter that highlights how your skills align perfectly with the job's needs.
Interview Mastery:
Prepare for interviews like a pro with likely questions, strategic answers, and insightful questions for you to ask, setting you apart as an informed candidate.
Direct Application Insights:
Receive tailored advice on the best places to apply, ensuring your applications are seen by the right employers.
Skills and Gaps Assessment:
Identify and close critical skills gaps to position yourself as the best-fit candidate for your ideal job.
Personalized Email Pitch:
Make a memorable first impression with an email template crafted to engage potential employers and initiate meaningful conversations.
In-depth Research Guide:
Leverage comprehensive research tools to gather effective insights on companies, industry trends, and role-specific challenges.
Detailed Company Analysis:
Gain in-depth understanding of your prospective employer, giving you the edge in applications and interviews.
Strategic Candidate Overview:
Understand your unique value and why companies would want to interview you, highlighting your background and positioning.