We are seeking an experienced Principal Cybersecurity Engineer to join our Cybersecurity Engineering & Assurance team. This position plays an integral role in protecting the Cornerstone OnDemand (CSOD) from internal and external threats and work closely with our technology teams to define the security best practices, perform architecture and design reviews, threat modeling, conduct security assessment, and support the identification, interpretation, and remediation of vulnerabilities across CSOD tech stack. We are looking for an individual with a strong background in Cybersecurity and a proven ability to deliver under pressure.
In this role you will…
- Design, develop, coordinate, and document the secure operation of information systems and develop best practices for securing enterprise-wide data and information systems
- Participate in architecture and design reviews with technology staff to incorporate effective security standards into design
- Implement DevSecOps practices and embed security throughout the software development lifecycle.
- Stay updated with the latest cybersecurity threats, trends, and best practices to ensure the organisation's security posture remains robust.
- Implement innovative security solutions to reduce mean time to detect & respond.
- Ensure the secure design, development, and deployment of Gen AI systems.
- Assist in the development, implementation, and enforcement of cybersecurity policies, standards, and procedures.
- Work independently with minimal supervision, and provide leadership and mentorship to junior security engineers.
You’ve got what it takes if you have:
- Bachelor’s degree in computer science or equivalent work-related experience.
- 5+ years of hands-on experience in the CyberSecurity Engineering domain with exposure of working in a multi cloud or complex environments.
- Experience with DevSecOps methodologies and secure coding practices.
- Proficiency in programming/scripting languages (e. g., Python, PowerShell) and automation tools such as Terraform,
- CloudFormation for building security automation solutions at scale.
- Preferred certifications such as CISSP, CCSP, AWS Certified Security – Specialty, Azure Security Engineer, or Google
- Professional Cloud Security Engineer.
- Knowledge of regulatory requirements and industry standards such as SOC, NIST, FedRamp, PCI-DSS, GDPR
- Cybersecurity Framework and CIS Controls.
- Experienced in security metrics, maintaining dashboards and executive reporting
- Excellent communication, presentation and collaboration skills.
#LI-Onsite
Read Full Description