The Security Engineer will identify vulnerabilities, utilize penetration testing tools, automate tasks, and communicate findings with stakeholders.
Overview:
Corporate Tools is hiring an Security Engineer for $175,000/year. You will be a traditional company employee. This is a full time 40 hour/week position with company benefits. This is a remote position. Our main office is in Spokane WA, and we have satellite offices in Austin TX and Salt Lake City UT.
We are expanding our team to include a Security Engineer to be 100% focused on our security efforts. As the right candidate, you will have experience working in-house as a full-time penetration tester, a regular 3rd party bug bounty program pen tester, or in a similar security type role. Your job will be to identify our vulnerabilities to help keep our information safe and secure.
Wage:
Up to $175,000/year
Benefits:
Responsibilities:
Requirements:
Corporate Tools is hiring an Security Engineer for $175,000/year. You will be a traditional company employee. This is a full time 40 hour/week position with company benefits. This is a remote position. Our main office is in Spokane WA, and we have satellite offices in Austin TX and Salt Lake City UT.
We are expanding our team to include a Security Engineer to be 100% focused on our security efforts. As the right candidate, you will have experience working in-house as a full-time penetration tester, a regular 3rd party bug bounty program pen tester, or in a similar security type role. Your job will be to identify our vulnerabilities to help keep our information safe and secure.
Wage:
Up to $175,000/year
Benefits:
- 100% employer-paid medical, dental and vision for employees
- Annual review with raise option
- 22 days Paid Time Off accrued annually, and 4 holidays
- After 3 years, PTO increases to 29 days. Employees transition to flexible time off after 5 years with the company-not accrued, not capped, take time off when you want
- The 4 holidays are: New Year's Day, Fourth of July, Thanksgiving, and Christmas Day
- Paid Maternity and Paternity Leave
- Up to 5% company matching 401(k) with no vesting period
- Quarterly allowance
- Use to make your remote work set up more comfortable, for continuing education classes, a plant for your desk, coffee for your coworker, a massage for yourself... really, whatever
- Open concept office with friendly coworkers
- Creative environment where you can make a difference
- No dumb benefits like free dog walking on the weekends that snobby hipster places have to make you feel cool, but mathematically won't cost the company much money because you won't use it
- Trail Mix Bar --- oh yeah
Responsibilities:
- Understand and safely use various open source penetration testing tools and when appropriate, emulating hacker tactics, techniques, procedures
- Create security vulnerability reports for both technical and executive audiences
- While in-between assessments, you will be expected to help our security engineers think through solutions to problems you find
- Automate tasks and script at a basic level to enhance penetration testing processes
- Passion for learning new technologies and processes, and contributing to refining existing capabilities
- Communicate with stakeholders (technical and non-technical), both verbal and written
- Stay up to date on 0 day exploits for tech stacks we use
Requirements:
- Solid fundamentals in webapp and network pentesting (2+ years). Pentesting experience in mobile apps, APIs, and/or cloud environments a bonus
- 4+ years of professional experience in Ruby on Rails or equivalent and Vue or a Frontend equivalent framework
- Experience with Linux and cloud environment testing
- Understanding of security issues for desktop, virtual, cloud services and network infrastructures
- Working knowledge of information systems security standards/practices (e.g., access control and system hardening, system audit and log file monitoring, security policies, and incident handling)
- Experience with secure network protocols and encryption of communications between networked hosts
- Experience in IT systems and security policies, standards, industry trends, and techniques
- Experience with assessing APT threats, Penetration Testing, Vulnerability Management, attack methodologies, forensics analysis techniques, malware analysis, attack surface comprehension, Cyber Threat Emulation operations, Cyber Advanced Threat Emulation Team operations and research, identification, and/or verification of new APT TTPs
- Fundamental understanding of security knowledge of testing mobile, native applications, web applications, distributed and database systems
- Must be detail-oriented and possess strong problem-solving skills and ability to analyze for potential future issues
- Solid understanding of common webapp vulnerabilities, exploitation techniques, and remediation options
Top Skills
Cloud Environments
Linux
Penetration Testing Tools
Ruby On Rails
Vue
Similar Jobs at Corporate Tools LLC
eCommerce • Legal Tech • Professional Services • Software • Data Privacy
Responsible for identifying vulnerabilities, creating security reports, communicating with stakeholders, and assisting in security practices and processes.
Top Skills:
Cloud ServicesLinuxPenetration Testing ToolsRuby On RailsVue
eCommerce • Legal Tech • Professional Services • Software • Data Privacy
The Web Application Security Analyst will identify security vulnerabilities in web applications, respond to incidents, and develop best practices for security.
Top Skills:
Application Security Assessment MethodologiesCloud-Based InfrastructureInformation SecurityWeb Applications
eCommerce • Legal Tech • Professional Services • Software • Data Privacy
The Application Security Director leads the security team, implements security strategies, ensures compliance, and oversees hands-on technical work and team development.
Top Skills:
AWSKubernetesLinuxRubyRuby On Rails
What you need to know about the Boston Tech Scene
Boston is a powerhouse for technology innovation thanks to world-class research universities like MIT and Harvard and a robust pipeline of venture capital investment. Host to the first telephone call and one of the first general-purpose computers ever put into use, Boston is now a hub for biotechnology, robotics and artificial intelligence — though it’s also home to several B2B software giants. So it’s no surprise that the city consistently ranks among the greatest startup ecosystems in the world.
Key Facts About Boston Tech
- Number of Tech Workers: 269,000; 9.4% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Thermo Fisher Scientific, Toast, Klaviyo, HubSpot, DraftKings
- Key Industries: Artificial intelligence, biotechnology, robotics, software, aerospace
- Funding Landscape: $15.7 billion in venture capital funding in 2024 (Pitchbook)
- Notable Investors: Summit Partners, Volition Capital, Bain Capital Ventures, MassVentures, Highland Capital Partners
- Research Centers and Universities: MIT, Harvard University, Boston College, Tufts University, Boston University, Northeastern University, Smithsonian Astrophysical Observatory, National Bureau of Economic Research, Broad Institute, Lowell Center for Space Science & Technology, National Emerging Infectious Diseases Laboratories
