Responsibilities
Act as a technical liaison between the Security department and our product, engineering, support, and operations staff.
Create documentation and processes in English to help satisfy compliance requirements and/or internal process questions.
Evaluate, deploy, and create systems and tools that will enhance our efficiency.
Support our data protection officer and compliance team with information requests, pen testing coordinations, internal and external vulnerability scanning, disaster recovery, and related activities.
Execute our security incident management process.
Ensure all systems and services in our environment are securely designed, configured, managed, and monitored.
Work with external auditors to answer questions on PCI and SOC 2.
Participate in an on-call rotation, the majority of which is during normal working hours.
Qualifications
Experience with Linux (preferably Debian-based)
Markdown
Experience implementing PCI, SOC 2 , or related
Operate largely independently (go take that hill) with management support
Able to juggle several requests at the same time
Experience securing cloud services (AWS in particular)
Sysadmin experience
Experience with git-based workflows
Proficient in Python or Golang
Experience with containerization technologies (LXC/LXD, Docker)