Senior Information Security Analyst
In 2007, two software engineers and serial entrepreneurs founded ezCater. Today, we’re the #1 online (only nationwide) marketplace for business catering in the United States, a $22B market. Our 2.5M+ on-time ratings and reviews, our 60K+ caterers and restaurants, and our 5-star customer service make it incredibly easy for business people to find and order great food for their meetings. We’re backed by Insight Venture Partners and Iconiq Capital, we’re on a path to $1B in 2019, and we’ll get there – even more surely if you come help us.
We’re looking for an Information Security Analyst to help to secure our customers and our platform. You may conduct risk assessments, manage social engineering exercises, facilitate security training of employees, and analyze results of vulnerability assessments just to name a few things.
ezCater values technology as a differentiator and a key component of our success. It powers everything we do. We push ourselves every day to better the codebase, improve performance, and deliver an amazing customer experience. Check out this CBS Boston article for a glimpse into our culture.
What You’ll Do:
- Independently lead information security program enhancement projects of varying size, scope, and technical complexity.
- Be a subject matter expert to other teams and assist as necessary on the design, implementation, deployment, and maintenance of security controls and processes.
- Work with other teams to identify, resolve, and mitigate vulnerabilities and risks.
- Work to solve security challenges at scale while balancing usability, stability, scalability, and performance.
- Participate in the implementation of the information security framework to support the achievement of program and compliance objectives.
- Provide responses to external vendor security due-diligence questionnaires (DDQs) and internal and external auditors regarding information security topics.
- Facilitate vendor risk management and due diligence exercises
- Stay up-to-date with news and trends in information security including new vulnerabilities, methodologies, and products.
You Have:
- Two (2) or more years of experience in a role with IT Security or Information Security responsibilities.
- Experience designing, implementing and managing security controls and processes.
- Experience with open source technologies and environments.
- Experience in analyzing security events and responding to security incidents.
- Experience with tools such as Nessus, OSSEC, WAF, IPS/IDS, firewalls, and SIEMs.
- Foundational understanding of Linux operating systems and networking is required.
- Basic understanding of, or ability to quickly learn, one or more common compliance regulations or standards (e.g. PCI, SOC2, GDPR, ISO 27001).
What you’ll get from us:
Importantly, you’ll get sane working hours and a huge amount of flexibility around work/life balance. Have people in your life – of any age – who always, often, or sometimes need your help? We make room for that. Have a bad thing or a good thing happen to you? We make room for that, too.
Oh, and here’s what else you’ll get: Market salary, stock options you’ll help make worth a lot, the usual holidays, all-you-can-eat vacation, 401K, health/dental/FSA, long-term disability insurance, subsidized T-passes, a great office smack-dab in Boston’s Downtown Crossing, a tremendous amount of responsibility and autonomy, wicked awesome co-workers, cupcakes (and many more goodies), and knowing that you helped get this rocket ship to the moon.
ezCater is an equal opportunity employer. We embrace humans of every background, appearance, race, religion, color, national origin, gender, gender identity, sexual orientation, age, marital status, veteran status, and disability status. At the same time, we do not employ jerks, even brilliant ones.