Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Manage security posture and protect applications from external threats.
- Company: Award-winning company known for its great culture and flexibility.
- Benefits: 3 weeks paid time off, health benefits, and a 401(k) with company match.
- Why this job: Join a team that values work/life balance and meaningful contributions.
- Qualifications: 3+ years in penetration testing and strong knowledge of security vulnerabilities.
- Other info: Dynamic environment with opportunities for professional growth and learning.
The predicted salary is between 36000 - 60000 ÂŁ per year.
About Us
Our mission is simple: we want to set people free to do meaningful work. People love our software—and it\\\’s clear that people love working here too. We\\\’ve been recognized as a \”Best Company to Work For,\” and we\\\’re proud of our team for receiving awards for workplace effectiveness and flexibility.
What You\’ll Do
As our Security Engineer, you\\\’ll be responsible for managing our security posture as well as keeping our application safe from external threats. Our ideal Security Engineer will be able to manage IT-related security issues, such as firewall management, HIDS/HIPS configuration, log monitoring, and audit compliance (SOC II). You will ensure that our software application is both manually and automatically pentested for security vulnerabilities (Red Team and Blue Team exercises) and be a decision maker in all things security management — able to \”pull the plug\” on a feature, application, or other business function if it represents a significant risk to the company.
- Conduct penetration tests against web applications and infrastructure
- Validate security on new hardware and software infrastructure
- Assist front-line company representatives with security questions
- Manage firewall rules and internal pentesting
- Manage SOC II controls and external pentesting
- Manage priorities through backlog management system (Jira)
- Come to work, do great things, then go home!
What You Need to Get the Job Done
- 3+ years experience performing penetration testing (against web applications)
- Experience securing cloud-based infrastructures and solutions
- Previous experience working on an information security team
- Advanced knowledge of common security vulnerabilities (OWASP) and best practices
- Familiarity with SOC II controls and how to review them
- Experience in other technical roles (SysAdmin, Helpdesk, etc.)
- Strong understanding of Linux server environments
- Experience with Kanban and Agile DevOps workflows
- A good attitude and willingness to learn — you\\\’ll be with great people. You\\\’re welcome.
What Will Make Us REALLY Love You
- You have a degree in CS, IT, or a similar field
- CISSP, Security+, or other security-related or Linux or cloud-related certifications
- Previous scripting experience (Python, Perl, Ruby, or PHP)
- You possess strong time prioritization skills
- You are proactive and look for ways to continuously increase efficiency
- We can see that you have a measured demeanor that assumes the best of people and respects co-workers.
- Real-world examples of demonstrated technical leadership
What You\\\’ll Love About Us
- Great Company Culture. Utah Business Best Companies to Work For (2020 & 2021) and the Sloan Award for Business Excellence in Workplace Effectiveness and Flexibility (2020 & 2021)
- Work that Stays at Work. Genuine work/life balance served here!
- Rest and Relaxation. 3 weeks paid time off, 11 paid holidays, and we pay you to go on vacation (ask us about this!)
- Health Benefits. Medical with HSA and FSA options, dental, and vision
- Prepare for the Future. 401(k) with company match
- Financial Peace University. Take the class, get reimbursed, get a bonus
Equal Opportunity Employer–M/F/D/V
Because our team members are trusted to handle sensitive information, we require all candidates that receive and accept employment offers to complete a background check before being hired.
#J-18808-Ljbffr
IT Security Engineer employer: Sarah's Cool Company
Contact Detail:
Sarah's Cool Company Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land IT Security Engineer
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, attend meetups, and connect with current employees at companies you're eyeing. A friendly chat can sometimes lead to job opportunities that aren't even advertised!
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your projects, especially those related to penetration testing and security management. This gives potential employers a taste of what you can do beyond your CV.
✨Tip Number 3
Prepare for interviews by brushing up on common security vulnerabilities and best practices. Be ready to discuss real-world scenarios where you've tackled security issues. We love candidates who can demonstrate their problem-solving skills!
✨Tip Number 4
Don't forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we’re always on the lookout for passionate individuals who want to join our amazing team!
We think you need these skills to ace IT Security Engineer
Some tips for your application 🫡
Show Your Passion for Security: When writing your application, let us see your enthusiasm for IT security! Share any personal projects or experiences that highlight your skills in penetration testing and managing security postures. We love candidates who are genuinely excited about keeping our software safe!
Tailor Your CV to the Role: Make sure your CV speaks directly to the job description. Highlight your experience with firewall management, SOC II controls, and any relevant certifications. We want to see how your background aligns with what we’re looking for, so don’t be shy about showcasing your achievements!
Be Clear and Concise: Keep your application straightforward and to the point. Use bullet points where possible to make it easy for us to read through your qualifications. We appreciate clarity, so avoid jargon unless it’s necessary to demonstrate your expertise!
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it shows us you’re serious about joining our awesome team!
How to prepare for a job interview at Sarah's Cool Company
✨Know Your Stuff
Make sure you brush up on your knowledge of common security vulnerabilities, especially those listed in the OWASP Top Ten. Be ready to discuss how you've tackled these issues in past roles, as this will show your practical experience and understanding of security best practices.
✨Show Off Your Skills
Prepare to talk about your experience with penetration testing and managing firewall rules. Bring examples of past projects where you successfully identified and mitigated security risks. This will demonstrate your hands-on expertise and problem-solving abilities.
✨Familiarise Yourself with SOC II
Since SOC II compliance is a key part of the role, make sure you understand its controls and how they apply to security management. Being able to discuss how you've managed or reviewed these controls in previous positions will set you apart from other candidates.
✨Be Ready for Scenario Questions
Expect to face scenario-based questions that test your decision-making skills in high-pressure situations. Think about times when you had to 'pull the plug' on a feature due to security concerns and be prepared to explain your thought process and the outcomes.
