Principal Security Engineer

Remote /

Technology /

Full Time

Apply for this job

Why Brightside:

The mission is clear. To improve the financial health of working families in America. Brightside is an employee benefit with a brand-new approach to personal finance. We offer unique solutions for employees & their families who need help with anything related to their finances and the emotions and behaviors that can impact them. We take a holistic view to provide unbiased and confidential assistance through an unmatched blend of products, technology and true human care. Our goal is to make it easier for our clients to understand their options to obtain long-term financial health and gain peace of mind when it comes to financial matters.

A bit about this role:

As the Principal Security Engineer, you will work to ensure the confidentiality, integrity, and availability of Brightside’s data, applications, systems, and infrastructure. These responsibilities will include designing, deploying, and implementing tools, technologies, and processes to support the security program. You will also be responsible for providing leadership to the security and IT teams, serving as the lead for incident response, and supporting internal and external compliance programs. Finally, you will work with key members of the technology and product teams to ensure that we provide clear and practical guidance on all matters related to technical security practices.

The meaningful work you will tackle:

• Designing a thoughtful and practical security architecture including defense-in-depth using overlapping complementary controls throughout the protection, detection, and response lifecycle
• Selecting, deploying, managing, and maintaining information security systems and infrastructure and applying best practices for key IT system configuration
• Applying security best practices thoughtfully and realistically throughout our environment
• Working with key stakeholders to develop policies and procedures that align compliance needs with the organization's security needs
• Leading incident response efforts from a technical perspective
• Assisting with the identification and risk treatment of system vulnerabilities
• Serving as a primary technical point of contact on all security audits primarily focused on assisting with evidence collection and validation, paying careful attention to completeness and accuracy requirements

What we’re looking for in your background & what makes you a success:

• At a minimum 5 years of dedicated security experience, with at least a total of 10 years of experience in an IT role
• Experience with balancing the compliance and security needs of a heavily regulated security environment
• College degree preferred but not required
• CISSP or CISM certification preferred
• Experience supporting PCI, SOC2, or ISO27001 audits

Employee Benefits at Brightside:

At Brightside you'll find a remote, safe, fun & inclusive work environment.

We have a competitive benefit plan including medical, dental, vision, short/long term disability, life insurance, commuter options and a 401(k) plan.

We also offer a generous Time Off allotment including Paid Time Off / Wellness Days / Sick Time / Days of Service & Company Holidays.

Equal Employment Opportunity Commission:

Brightside is an equal opportunity employer and values diversity. We do not discriminate based on race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.

Apply for this job