ETQ

Our Company

For more than 25 years, we’ve been at the service of quality‑driven people. Every day, we help people and organizations push further and make change happen by offering them the right technology and knowledge to manage risk and protect lives.

ETQ, part of Hexagon, is the leading provider of quality, EHS and compliance management SaaS software, trusted by the world’s strongest brands. More than 600 customers globally, spanning industries such as pharmaceuticals, electronics, heavy industry, food and beverage, and medical devices, benefit from ETQ to secure positive brand reputations, enable higher levels of customer loyalty and enhance profitability. ETQ Reliance offers built-in best practices and powerful flexibility to drive business excellence through quality. Only ETQ lets customers configure industry-proven quality processes to their unique needs and business vision. ETQ was founded in 1992 and has main offices located in the U.S. and Europe. To learn more about ETQ and its various product offerings, visit www.etq.com.

Our Employees

We ensure that each employee is not only aware of our strategic vision; they are a part of it.

This is because we know that our employees are critical components to ETQ’s ever-growing success.

Words to describe our culture: caring, driven, integrity, passion, committed, thoughtful, diverse, family oriented, supportive, welcoming, fun!

At ETQ we believe deeply in diversity, equity and inclusion. Quality is best when everyone has a voice. Quality at ETQ is born through diversity, equity, and inclusion in all that we do. Our company celebrates inclusiveness and encourages employees to bring their authentic selves and unique experiences to ETQ. All of our employees add value to our culture, products, and customer experience.

Who we are looking for: 

We are looking for a Senior Security Engineer to join our Operations team. The position is a hands-on engineering and operations security role with a full range of responsibilities to evolve and support our overall development and operational security stance. Responsibilities include managing and integrating code analysis tools, performing ad-hoc and automated testing, analyzing scan results, managing 3rd party testing activities and results. You should be familiar with securing SaaS applications on modern cloud architectures such as AWS. Additionally, you approach security from an engineering and operations point of view, and understand the operational concerns (such as troubleshooting, but also monitoring) that come with such a SaaS platform. 

What to expect 

• Secure everything, in an automated way! 
• Coach and support team members in all the engineering areas on security, including Development, testing, DevOps and Cloud Operations. 
• Build automation and continuous monitoring/scanning infrastructure to enable security scanning within the development and deployment pipelines for our product. 
• Build out and manage the security tooling in our development area (e.g., tools like SonarQube, Burp Suite, etc.) 
• Act as a gate for our releases from a security perspective. 
• Rapidly respond to emerging threats in the industry to keep ETQ ahead of the game. 
• Analyze and advise on Zero Day threats, along with the broader security team. 
• Closely work with the other security teams in corporate IT etc. 
• Be able to clearly present findings and plans to all levels of the company, and to external parties (including customers). 
• Be an integral member of the audit team for our compliance activities and customer audits, providing our internal compliance team all the material they need to enable them operate solo where possible. 
• Provide automation to help deploy security remediations at both the OS and application level, using our orchestration tooling. 

What you need to succeed 

• 5+ years’ relevant technical experience and a bachelor’s degree with preference for Computer Information Technology, Computer Information Systems, Computer Science, Software Engineering, Computer Engineering, or other related degree. 
• Or 4+ year of relevant technical experience and a master’s degree in Computer Information Technology, Computer Information Systems, Computer Science, Software Engineering, Computer Engineering, or other related degree. 
• Excellent communication skills, verbal, and written with the ability to converse effectively at all levels within the organization. 
• Hands-on experience using, administering, and securing Linux based operating systems (RHEL/Fedora based preferred). 
• Solid hands-on working experience with security tooling such as vulnerability management tools, preferably including code scanning tools. 
• Experience with provisioning and configuration management tool(s) – Terraform, Ansible, Salt Stack, AWS SSM etc., or other relevant knowledge of automation and orchestration tooling. 
• Proficiency with version control tools and common branching methodologies (Git). 
• Understanding security of containerization such as Docker and Kubernetes. 
• A self-driven individual who can take general directions and objectives and drive them towards successful project delivery with minimal oversight. 
• AWS and security certifications are a plus. 
• Working with Java based platforms is a plus. 

The base cash compensation range for this role is $130,000 - $180,000*

• Please note: Final offer amounts are determined by multiple factors, including prior experience, expertise and geographic region & may vary from the amount above. This range does not represent additional compensation benefits (such as sales commissions, short- and long-term incentive packages, 401K match, medical, dental or vision insurance).

EEO/AA M/F/V/H