Fullstack Software Engineer focusing on security to ensure resilience and data protection at health tech company Alan. Involved in building foundational security and authentication systems.
About the role
- Senior Analyst in Information Security leading offensive security testing for FNBO. Collaborating with teams to improve security defenses and compliance measures.
Responsibilities
- Lead and execute penetration testing of APIs, web applications, and internal/external systems
- Coordinate penetration testing activities with application/system owners and guide issue resolution
- Act as a subject matter expert on offensive security and secure design for enterprise projects
- Contribute to operating system hardening standards and secure configuration guidelines
- Manage vulnerability management activities and ensure remediation efforts are effective
- Evaluate and advise on new technologies for secure enterprise adoption
- Provide consulting and training to business and technical teams on reducing security risks
- Partner with regulators and internal auditors on compliance reporting and assessments
- Monitor and scan systems for compliance with security standards, remediating gaps as needed
- Recommend process improvements to strengthen the enterprise security posture
Requirements
- 5+ years of relevant experience in information security, with at least 2 years of hands-on penetration testing
- Expertise across multiple security domains, including penetration testing, vulnerability assessment, risk assessment, and secure architecture
- Strong knowledge of application security principles, including secure SDLC and threat modeling
- Practical experience with tools such as Burp Suite, Metasploit, Nmap, Nessus, or similar
- Familiarity with regulatory and industry frameworks (ISO 27001, PCI-DSS, FFIEC, OCC, etc.)
- Excellent communication and documentation skills — able to present complex findings to both technical and non-technical audiences
- Ability to mentor junior team members and influence cross-functional teams
- Bachelor’s degree in Computer Science, Information Systems, Engineering, or related field (or equivalent experience)
- Professional certifications strongly preferred: OSCP, GPEN, GXPN, CISSP, or similar
- Candidates must possess unrestricted work authorization and not require future sponsorship.
Benefits
- Medical, Dental, Vision Insurance
- 401k, With Matching Contributions
- Time Off Programs
- Health Savings Account (HSA)/Dependent Care
- Employee Banking
- Growth Opportunities
- Tuition Assistance
- Short-Term/Long-Term Disability Insurance
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Security Engineer building trust foundations for bare - metal platforms at OpenAI. Designing and operating core security infrastructure for reliable compute platforms across global infrastructure.
Cybersecurity Consultant involved in deploying security tools and supporting compliance projects in Andorra. Working with cross - functional teams to enhance cybersecurity measures and documentation.
Microsoft Success Manager helping partners grow secure, scalable Microsoft practices across ANZ. Championing Microsoft security solutions and supporting partner success strategies in the region.
Assistant AVP overseeing a 5 - member team for Access Management services in Pune and Mumbai, ensuring high standards of service delivery and compliance.
Own global security systems infrastructure for QVC, managing access control and networked security systems across multiple regions. Collaborate with IT to ensure security and technology initiatives meet organizational needs.
Sales Account Manager growing ADAPTIT Cybersecurity business in Greece and Cyprus. Responsible for client relations, sales pipeline, and collaboration with the cybersecurity team.
Information Security Engineer focusing on Identity & Access Management and SSO at Westfield. Design, operate, and mature enterprise authentication and federation capabilities.
Cyber Security Engineer responsible for operational support and development activities with Ping Identity. Collaborate with global teams to strengthen cybersecurity and improve customer satisfaction.
Application Security Specialist focusing on security in software development lifecycle at Insight Investment in Manchester, driving DevSecOps practices across teams.