Security Engineer

Posted 3 Days Ago
Be an Early Applicant
Hiring Remotely in US
Remote
Mid level
Edtech • Information Technology
The Role
As a Security Engineer, you will design and maintain security tooling, address vulnerabilities, ensure compliance, and collaborate with teams to enhance security measures for the SaaS platform.
Summary Generated by Built In

At Instructure, we empower people to grow and succeed by creating intuitive products that simplify learning, facilitate meaningful relationships, and inspire innovation. We are revolutionizing how educational institutions manage and access their data to enhance teaching and learning. As a key contributor to the Security organization, you'll be focused on engineering initiatives across all of Instructure's products and services.


As a Security Engineer, you will be responsible for designing, implementing, and maintaining security tooling to protect our SaaS platform. You will also work closely with cross-functional teams to identify and address vulnerabilities, implement best practices, and ensure compliance with industry standards. This role is critical in upholding the trust of our customers and partners.

What you will be doing:

  • Infrastructure Security
  • Ensure secure configurations of cloud environments (e.g., AWS).
  • Develop and maintain infrastructure-as-code (IaC) security practices.
  • Design, implement, deploy, and maintain security tooling.
  • Oversight and management of  CNAPP platforms
  • Responsible for deployment, management, and maintenance of zerotrust platform(s) and supporting an overall zerotrust philosophy architecture and culture. 
  • Application Security:
  • Using static code analysis, dependency vulnerability scanning tools (Snyk) to identify and remediate vulnerabilities in application code. 
  • Management of CICD pipeline controls using Git (Github Actions) for enforcement of security controls. 
  • Collaborate with developers to identify and mitigate vulnerabilities in the software development lifecycle (SDLC).
  • Perform code reviews and provide guidance on secure coding practices.
  • Manage third-party dependency packages and container images for security and patching processes.
  • Perform vulnerability prioritization analysis based on severity and impact. 
  • Perform testing and validation application vulnerability patches. 
  • Security Operations 
  • Help build, maintain, and improve Security Orchestration and Automated Response (SOAR) practices to auto-remeidate and enrich security events. 
  • Responsible for building security altering based on relevant Indicators of Compromise (IoC) using log aggregation tools (Splunk, Observe, Sumologic) 
  • Activity participate in investigations and incident response activities, including being part of the incident response team, investigating alerts, and working with cross functional teams to resolve any active attacks or potential threats. 

Qualifications:

  • Ability to work effectively on a remote team in a collaborative, fast-paced, and dynamic environment.
  • Strong communication skills, with the ability to convey technical concepts to both technical and non-technical stakeholders.
  • A polite, professional demeanor and a commitment to fostering a positive and respectful workplace.

Required Experience & Skills:

  • Excellent problem-solving and critical-thinking skills.
  • Willingness to learn on the job and work outside of your comfort zone.
  • 3+ years of experience in a security engineering role or similar application engineering role.
  • Proficiency in securing cloud environments (AWS).
  • Strong familiarity with DevSecOps and CI/CD pipeline security.
  • Hands-on experience with security tools such as vulnerability scanners and code analysis tools. 
  • Understanding of OWASP Top 10 and overall secure application development principals. 
  • Working understanding of networking, encryption, authentication protocols, and secure application development.

Preferred Skills & Experience

  • Fluency in development languages like Java, JavaScript, Ruby, Ruby on Rails, etc  
  • Certifications such as CISSP, CEH, OSCP, or AWS Security Specialty.
  • Experience with container security (e.g., Docker, Kubernetes).
  • Knowledge of scripting languages (e.g., Python, Bash) for automation.
  • Knowledge of security frameworks (e.g., NIST, OWASP, CIS Benchmarks).
  • Contributions to open-source projects.
  • Hands-on experience with security tools such as SIEM, IDS/IPS, firewalls, and vulnerability scanners.

Get in on all the awesome at Instructure.

  • Competitive salary and 401k.
  • Medical, dental, disability, and life insurance.
  • HSA program, vision, voluntary life, and AD&D.
  • Tuition reimbursement.
  • Paid time off, 11 paid holidays, and flexible work schedules.
  • LifeStyle Spending Account

We’ve always believed in hiring the most awesome people and treating them right. We know that the more diverse we are, the more diverse our ideas will be and when we openly welcome those ideas, our environment is better and our business is stronger.

 

All Instructure employees are required to successfully pass a background check upon being hired.

Top Skills

AWS
Bash
Docker
Git
Github Actions
Kubernetes
Observe
Python
Snyk
Splunk
Sumologic
Am I A Good Fit?
beta
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
Chicago, IL
1,233 Employees
On-site Workplace
Year Founded: 2008

What We Do

Instructure is helping people grow from the first day of school to the last day of work. More than 30 million people use its Canvas and Bridge platforms for learning management and employee development.

Similar Jobs

Take-Two Interactive Software Logo Take-Two Interactive Software

Senior Product Security Engineer

Gaming • Information Technology • Mobile • Software
Remote
Hybrid
Texas, USA
6500 Employees
Easy Apply
Remote
Hybrid
11 Locations
2674 Employees

Upstart Logo Upstart

Principal Enterprise Security Engineer

Artificial Intelligence • Fintech • Machine Learning • Social Impact • Software
Easy Apply
Remote
2 Locations
1500 Employees
182K-253K Annually

RunPod Logo RunPod

Security Engineer

Artificial Intelligence • Cloud • Software • Infrastructure as a Service (IaaS)
Easy Apply
Remote
USA
62 Employees

Similar Companies Hiring

InCommodities Thumbnail
Renewable Energy • Machine Learning • Information Technology • Energy • Automation • Analytics
Austin, TX
234 Employees
Stepful Thumbnail
Software • Healthtech • Edtech • Artificial Intelligence
New York, New York
60 Employees
HERE Technologies Thumbnail
Software • Logistics • Internet of Things • Information Technology • Computer Vision • Automotive • Artificial Intelligence
Amsterdam, NL
6000 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account