Sr Security Engineer

Information Technology – IT               ·           Alameda, CA (On Site)           ·           Full time 

The Sr. Security Engineer, possess cutting-edge skills, and a passion for Information/ Cyber security & technology. The Sr Security Engineer will act as a key member of the Information Security & Compliance team, in this role the engineer will cater to the needs of the business, engage with product teams, be responsible for developing security solutions engineering and operational support across hybrid cloud environment, ensuring governance and compliance with legal and regulatory requirements, maintain Penumbra Inc., Information security policies, standards, and industry best practices.

In addition, the Sr. Security Engineer will be exposed to hands-on learning opportunities across all facets of the organization, working on high-profile, big-impact projects alongside the best of technologists in the industry.

What You’ll Work On

• Lead medium to large-scale security projects, be responsible for design, implementation and support of security solutions/ services, security controls orchestration and automation across services.
• Utilize Identity and Access Management(IAM)and Mobile Device Management (MDM) programs to enable capabilities, protect against digital identity and data risks.
• Develop and implement security programs and capabilities across IAM, MDM/MAM, FIDO2 capable tools, integration connectors for various target systems and services.
• Lead and manage the adaptation of IAM, MDM/MAM, FIDO2 capabilities across lines of business.
• Build and develop processes to enforce least privilege in a transparent way and manage security threats.
• Lead emerging trend research, orchestrate product evaluations, and select the latest industry standards and tools.
• Assist inidentifying, engaging with various product teams in managing security vulnerabilities such as XSS, SQLi, CSRF, SSRF, etc. in our web and infrastructure-related apps and services.
• Provide security guidance to application and service owners to remediate security vulnerabilities and continue to improve current state security posture.
• Develop, optimize and upkeep policy and standards, identify and conduct POCs on new tools, capabilities working with cross functional teams and manage global distribution.
• Work with cross functional teams to implement security and compliance requirements pertaining to identity, access, device, application management and governance.
• Adhere to the Company’s Quality Management System (QMS) as well as domestic and global quality system regulations, standards, and procedures.
• Understand relevant security, privacy and compliance principles and adhere to the regulations, standards, and procedures that are applicable to the Company.
• Ensure other members of the department follow the QMS, regulations, standards, and procedures.
• Perform other work-related duties as assigned.

What You’ll Bring

• Bachelor’s degree in computer science, engineering, or a related field, with 5+years of relevant experience or equivalent combination of education and industry experience.
• Hands-on experience on IAM LCM tools/ services i.e., SailPoint, Okta, ForgeRock etc., Mobile Device, Application & Data Management services i.e., Intune, MobileIron, Jamf, MECM/SCCM etc., Password less IT access management solutions using FIDO2 capable technologies and services.
• Strong development, and integration experience implementing Life-Cycle Management workflows, rules, and custom reports across IAM and MDM platforms/ services.
• Experience on PKI, directory services, hybrid AD, including conditional access features, and functionality i.e., strong understanding of GPO polices, Role Based Access Control, SOD, Access Certification, aggregation, workflows, tasks, rules and roles
• Experience with scripting (PowerShell, Python, Ruby, JS etc.) and automation.
• Extensive experience with solutions design, service integrations, policy build & enforcement i.e., app and data protection policies independent of MDM platform.
• Hands-on information security experience with a shift from traditional technology mindset to cyber security focus on large enterprise environments.
• Expertise finding and fixing common security vulnerabilities across business assets & services (e.g., OWASP Top 10)
• Ability to work collaboratively with product teams, driving collaboration across global virtual team, on-call cadence, and service KPI’s.
• Strong oral, written, and interpersonal communication skills
• High degree of accuracy and attention to detail
• Proficiency with MS Word, Excel, and PowerPoint
• Excellent organizational skills with ability to prioritize assignments while handling various projects simultaneously

Working Conditions

• General office environment. Business travel from 0% – 10%. Potential exposure to blood-borne pathogens. Requires some lifting and moving of up to 25 pounds. The employee is frequently required to stand, walk, sit, and reach with hands and arms, and to use a computer, sitting for extended periods. Specific vision abilities required by this job include the ability to read, close vision, distance vision, color vision, peripheral vision, and depth perception.

Alameda, CA

Starting Base Salary is $130,138 – $183,750/year.       

Individual compensation will vary over time-based on factors such as performance, skill level, competencies, work location and shift.

What We Offer

• A collaborative teamwork environment where learning is constant, and performance is rewarded.
• The opportunity to be part of the team that is revolutionizing the treatment of some of the world’s most devastating diseases.
• A generous benefits package for eligible employees that includes medical, dental, vision, life, AD&D, short and long-term disability insurance, 401(k) with employer match, an employee stock purchase plan, paid parental leave, eleven paid company holidays per year, a minimum of fifteen days of accrued vacation per year, which increases with tenure, and paid sick time in compliance with applicable law(s).

Penumbra, Inc., headquartered in Alameda, California, is a global healthcare company focused on innovative therapies. Penumbra designs, develops, manufactures, and markets novel products and has a broad portfolio that addresses challenging medical conditions in markets with significant unmet need. Penumbra sells its products to hospitals and healthcare providers primarily through its direct sales organization in the United States, most of Europe, Canada, and Australia, and through distributors in select international markets. The Penumbra logo is a trademark of Penumbra, Inc.

Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, age, disability, military or veteran status, or any other characteristic protected by federal, state, or local laws.

If you reside in the State of California, please also refer to Penumbra’s Privacy Notice for California Residents.

For additional information on Penumbra’s commitment to being an equal opportunity employer, please see Penumbra’s AAP-Policy-Statement.

Please click here to apply.