Senior Security Engineer, IAM

DISQO is changing the way that the world's largest brands, agencies and consumer intelligence companies get to know their consumers. We've built the first identity-based platform that combines consumer attitudes and behaviors together to power the most accurate and predictive insights solutions for our customers, and we do all of that with the willing participation of our consumers and without using outdated technologies like third-party cookies. We help our customers get a cross-platform view into consumer sentiment, measure advertising effectiveness, analyze consumer purchase journeys, and ultimately grow their brands.

• Leverage your IAM fundamentals and understanding of the identity lifecycle to build and enhance systems that control, limit and continuously audit the integrity our identity plane
• Work to build, maintain and continuously enrich the quality of our security telemetry, working to improve our threat data using a combination of off-the-shelf technologies and custom engineering.
• Perform security reviews and threat assessments on an as-needed basis to ensure the upkeep and maintenance of our security posture
• Identify, verify and contain and remediate threats: serve as Incident commander security incidents, ensuring that potential issues are identified, classified, contained and documented in accordance with InfoSec policies.
• Drive detailed RCA in the wake of incidents, ensuring a level of analysis that ensures both a deep understanding of the incident, it's content, and the controls and remediation that will prevent it from recurring.
• Act as a model of InfoSec practices, integrity and transparency, evangelizing the use of cryptography, data handling, threat awareness and operational security.

• Broad understanding of multiple knowledge domains, including IAM, vulnerability management, threat detection, incident response and orchestration-based automation and response.
• 7 years progressive experience in a combination of security, software and platform engineering, including
• 3 years developing security services or tooling with a modern, high-level language (python, golang)
• 2 years working on common auth protocols and frameworks (OpenID Connect, Oauth, Saml, Kerberos, Claims
• 2 years working on threat, vuln, fraud or compliance ideally building or supporting cross-functional mitigation programs
• A background that involves creating a layered security perimeter in the context of a cloud- and container-based microservices
• Experience supporting (or building) a security operations function in startup environments, ideally serving as incident commander for security incidents
• Knowledge of networking fundamentals, including TCP/IP, OSI stack model, L2, L3 and L7 fundamentals and raw packet analysis. Fluency with common cryptographic modalities the ability to perform common cryptographic tasks using public key cryptography, certificates and gpg
• Experience using tools like Splunk, Guard Duty and Qualys to develop and manage threat telemetry
• One industry-recognized security certification (CEH, CISSP, CCSP, CISA) or the willingness to secure one within six months
• A foundational belief that security succeeds to the extent that it empowers that your mission instead saying "no, you cannot" is to say "yes, here is how"
• Agile DNA