Software Engineer

Client's Security Team Overview

• The client's security team is the central engine driving data and systems security at the company, supporting it and all of its family of apps.
• The org is responsible for inhibiting malicious actors from compromising our environment, detecting, and responding to them before they do damage if they do, ensuring we are maintaining the protections we say we will, and engaging with the community to help those outside the company learn from the work we do.
• We work across all parts of the company, from the corporate infrastructure to production to external services, interfacing with nearly every team in the company.

Position Overview

The Software Engineer should have prior experience with security policy, risk, and access management disciplines and be comfortable collaborating with cross-functional teams. This position will be responsible for identifying and enforcing solutions to control access to internal systems.

An ideal candidate is someone that has technical knowledge of the broad aspects of information security and is able to identify deficiencies in the access management space. This role specifically needs deep conceptual understanding of the IAM concepts that can be applied to our internal IAM solutions. This role requires a broad mix of security, technical, coding and communication skills coupled with a strong desire to learn.

Minimum Qualifications

• BSc in Computer Science related field, or equivalent experience
• 5+ years of software development experience
• 5+ years of proven experience working on Information Security teams or conducting Information Security consulting engagements
• Experience in writing custom scripts in Python/C++ and PHP/Hack
• Experience building large-scale distributed systems or similar experience
• Experience in assessing security deficiencies in first-party/internal information systems and recommending mitigating controls
• Knowledge of evaluating systems architectural designs, data-flow diagrams and technical security implementations, particularly in the context of access management in different geographical locations.
• Experience with developing security reporting and recommendations that are meaningful, defensible and actionable for a variety of audiences
• Ability to manage competing priorities and simultaneous projects in a fast-paced environment with little supervision
• Strong communication skills - both written and verbal, interpersonal skills, and ability to work cross-functionally with various teams.

TOP 3 HARD SKILLS:

• Experience in writing custom scripts in Python/C++ /PHP/Hack
• Experience building large-scale distributed systems or similar experience
• Knowledge of evaluating systems architectural designs, data-flow diagrams and technical security implementations, particularly in the context of access management.

Responsibilities

• Design and implement systems that enhance the security of Identity & Access Management Systems
• Build and maintain tools that improve the Identity and Access Management posture.
• Conduct design and code reviews, analyze and improve efficiency, scalability, and stability for assigned product area and/or systems
• Identify and drive changes as needed for assigned codebase, product area and/or systems
• Interface with other teams to incorporate their innovations and vice versa
• Articulate security findings to a variety of stakeholders, including both technical and non-technical stakeholders
• Provide defensible recommendations on technical, physical and administrative control implementations based on findings while balancing the cost versus benefits
• Participate in the development and oversight of corrective actions relating to security issues
• Participate in cross-functional, team, and status review meetings
• Recommend process improvement and strategic initiatives as related to security.

Preferred Qualifications

• Program and project management skills
• Experience in the IAM domain in a cloud-based infrastructure environment
• Good grasp of SOX, SOC2, NIST, PCI, ISO, and other security regulations
• Strong analytical and problem-solving skills, including a basic understanding of data analysis techniques

Our Client is the largest social media company in the world. They have substantial B2B and B2C advertising and media platforms, as well as a nonprofit initiative. With the mission of bringing people together, they now boast over 2 billion users and are rapidly developing as they influence the world around us.

Aquent is dedicated to improving inclusivity & is proudly an equal opportunities employer. We encourage applications from under-represented groups & are committed to providing support to applicants with disabilities. We aim to provide reasonable accommodation for any part of the employment process to those with a medical condition, disability or neurodivergence.