Senior Information Security Engineer

Senior Information Security Engineer
We are seeking an experienced Information Security Engineer to join our security team within our technology organization. The focus will be on our corporate infrastructure and our security processes and procedures (endpoint management, intrusion prevention, disaster recovery).  The successful candidate will establish advanced security capabilities within the organization and drive improvements in our security posture in support of the Curriculum Associates’ mission.

Why join this team:

We are growing our security team!  We’re looking for someone who wants to make a difference and have an impact on our path and direction.  While the focus will be our corporate infrastructure, you will have the opportunity to learn and work on the security of our SaaS application and AWS environment.
At Curriculum Associates, we believe a diverse team leads to diversity in thinking, making our products better for teachers and students. If you read this job description, feel energized by what you see here, and believe you could bring passion and commitment to the role, but you aren’t sure you meet every qualification, please apply! Above all, we are looking for the right person!

About i-Ready

In a single program, i-Ready integrates powerful assessments and rich insights with effective and engaging instruction in reading and mathematics to address students’ individual needs.  i-Ready empowers teachers every day to make more informed instructional decisions and motivates students with access to their own personalized path to growth.  Want to be part of our impact?  Join us!

The impact you’ll have:

• You’ll develop, monitor, and assess our data, server, and network security implementations.
• You’ll conduct vulnerability testing and implement remediation.
• You’ll configure and troubleshoot security infrastructure.
• You’ll administer corporate security tools (PAM, EDR, DLP, IDS, etc.).
• You’ll review and refine data security policies and procedures.

Who we’re looking for:

• 5+ years of experience in an Information Security role including administration of Windows Desktops and Servers
• Experience with Microsoft Active Directory, LDAP, and Mac security controls
• Experience managing Office 365 security controls (data loss prevention, encryption)
• Strong understanding of networking and firewall administration
• Working knowledge of penetration testing methods and tools (Kali Linux, Metasploit, Mimikatz, Cobalt Strike)
• Experience with mobile application and device security controls
• Ability to work in and enjoy a fast-paced environment across organizational teams
• Excellent verbal and written communication skills
• General analysis/problem solving and ability to develop creative solutions

We’d also love to see, though not required:

• Experience with either application security or AWS infrastructure security
• Some audit and compliance (ISO-27000, NIST-800, SOC, PCI) efforts and understanding
• PowerShell, Bash, Python scripting, and coding abilities

Compensation & benefits: Competitive salary with great benefits including health, dental, and vision insurance, employer contributed 401K.