Security Engineer

Related keywords: network engineer remote jobcompliance remote jobremote job bank

This page contains product affiliate links.

Introduction to Masabi

Masabi is at the forefront of the fare payment revolution, providing innovative solutions that allow users to buy and present tickets for public transport seamlessly. Their technology enables a range of options for riders, including mobile phones, ticket machines, and direct bank card taps, facilitating public transit in over 250 global locations. The company prides itself on building a network of passionate innovators dedicated to improving transit experiences.

Role Overview

As Masabi continues its expansion, the need for a Security Engineer has emerged to play a critical role in safeguarding their platforms. The individual will be tasked with building robust security controls and ensuring compliance. This position demands a blend of technical expertise and process improvement skills, making it ideal for someone who is curious, empathetic, and detail-oriented. The Security Engineer will report directly to the Senior Director of Corporate IT, Compliance, and Customer Success.

Responsibilities

Compliance & Security Controls

• Own and enhance security controls aligned with PCI DSS, SOC 2, and ISO 27001, assisting in audits and recertifications.
• Ensure continuous audit readiness through comprehensive control testing, documentation, and necessary remediations.
• Collaborate with internal teams and auditors to gather evidence and manage compliance outcomes effectively.
• Track and manage contractual security obligations clearly and efficiently, identifying any billable work.

Risk Management & Policy

• Lead risk assessments and identify gaps in controls, recommending effective mitigation strategies.
• Manage the lifecycle of security policies, ensuring they are practical and up-to-date across teams.
• Stay informed on regulatory changes and industry trends to proactively enhance security measures.

Vulnerability Management

• Direct the vulnerability scanning process, prioritizing risks and collaborating with teams to address findings within established SLAs.
• Coordinate bi-annual penetration tests and monitor CVEs to assess their impact on cloud infrastructure and associated dependencies.
• Oversee patch compliance and keep SSL certificates current, with an emphasis on automation of scanning and reporting.

Incident Response & Continuous Improvement

• Manage the full lifecycle of security incidents, from detection to resolution, emphasizing learning from each incident.
• Maintain incident response plans that align with compliance standards and enhance response mechanisms.
• Track key risk indicators and report security metrics to leadership, contributing to an engaged and informed team.

Required Skills

• Hands-on experience in security engineering, compliance, or risk management.
• Familiarity with PCI DSS, ISO 27001, and SOC 2 security audits.
• Solid understanding of vulnerability scanning, penetration testing, and cloud environments.
• Comfort with conducting risk assessments, employing mitigation tactics, and managing patch workflows.
• Ability to produce clear and concise documentation, reports, and policies.
• Collaborative, proactive attitude with a drive for continuous improvement is essential, alongside a comfort in working independently.

Benefits

Masabi recognizes the invaluable contributions of its team members and offers a range of benefits designed to support work-life balance and personal growth:

• Up to 26 days of holiday per year, plus a Christmas shutdown period.
• Access to private healthcare to ensure well-being.
• A monthly team bonding allowance promoting collaboration and camaraderie.
• An annual training budget of up to €1000 to foster professional development.
• A €200 allocation for home office improvements, ensuring comfort in remote work.
• Flexible choice of workstation and support for personal matters like menopause.
• The ability to work remotely from any country for up to 3 months per year, subject to certain limitations.

Company Culture

Masabi fosters a culture of openness and trust, where employees feel empowered to embrace their authentic selves. They highly value diversity and encourage those from underrepresented backgrounds to apply, ensuring a welcoming environment for everyone. The focus on people-first policies enhances employee morale and nurtures a supportive workplace conducive to shared success.

Opportunity for Growth

Joining Masabi not only aligns you with a mission to make transit systems fair and accessible worldwide, but it also offers a chance for personal and professional growth. Employees are encouraged to pursue their passions and support one another's journeys, whether direct or exploratory. Masabi is on an upward trajectory, and being part of their innovative team positions you to be a driving force in the industry's evolution.

Conclusion

For job seekers looking to make an impact in the field of cybersecurity and compliance, the position of Security Engineer at Masabi presents an exciting and rewarding opportunity. With competitive benefits, a dynamic work environment, and a supportive company culture, this role offers an incredible chance to contribute to the company's mission while growing as a professional in the tech field. For those ready to embrace the challenge and drive positive change in public transit experiences, apply today!

This job offer was originally published on himalayas.app