Senior Security Engineer

More than a mission, C2FO is a better financial system changing the way every business gains access to the working capital they need to thrive. At C2FO, everyone is an employee-owner which means we’re all invested in our work and team members. We’re a company of team players and self-starters finding new and innovative ways to get things done. If you’re excited to learn, grow and leave your mark on our fast-growing organization, C2FO may be the place for you. **

About C2FO**

Headquartered in Kansas City, USA, C2FO has more than 800 employees worldwide, with operations throughout North America, Europe, India, Asia Pacific, and Australia. C2FO is the world’s largest on-demand working capital platform. Our mission is to ensure every business has the capital needed to thrive and we have delivered more than $275 billion in funding to businesses since our founding. How do we do this? By providing fast, flexible and equitable access to low-cost capital through our easy-to-use platform.

We provide technology with a human touch, giving our customers the direct support they need and ensuring our team members have the tools, resources and work environment they need to deliver on our promise to customers. With the C2FO platform, businesses worldwide have more working capital to fuel their growth, create jobs and develop new products. **

Benefits**

At C2FO, we take care of our customers and our people – the vital human capital that helps our customers thrive. That’s why we offer a comprehensive benefits package, flexible work options for work/life balance, volunteer time off, and more. Learn more about our benefits here. https://www.c2fo.com/amer/us/en-us/about-us/careers **

About the Senior Security Engineer:**

The Senior Security Engineer will be responsible for managing and operating C2FO’s security tools and policies. This includes ensuring compliance, managing user access, and maintaining security measures within our system or network. **

Essential Duties:**

• Keep our multi-cloud infrastructure up-to-date, secure, available, and appropriately sized
• Collaborate with developers to design, deploy, monitor, and troubleshoot new services.
• Manage our CI/CD platform used by developers.
• Design and implement various security tooling around code, containers, and networking
• Participate in on-call rotation for cloud infrastructure and in production escalations as necessary.
• Be the first point of contact for global security related support.
• Manage and troubleshoot company-wide security policies and protocols.
• Manage user access.
• Regularly perform audits and vulnerability assessments.
• Monitor network traffic for suspicious behavior.
• Monitor firewalls, antivirus software, and intrusion detection systems.
• Collaborate with engineering teams to operate and maintain the security infrastructure.
• Provide training and support to staff on security procedures and protocols.

Basic Qualifications:

• Bachelor’s degree in information technology, Computer Science, or a related field, or an equivalent combination of education, training, and professional experience.
• 2+ years’ experience in a related position
• Comprehensive understanding of security principles and technologies.
• Knowledge of security risk management, incident response, and disaster recovery.
• Experience with Service Management principles.

Technologies:

• Tools such as Datadog and Prisma
• Amazon Web Services (AWS), Google Cloud Platform (GCP), and Microsoft Azure
• Security standards like SOC2, ISO 27001, OWASP Top Ten, and CIS

Preferred Qualifications:

• Experience with or interest in relational databases
• Experience with or interest in containers and container orchestration
• Experience with Linux, network, and security administration
• Experience with configuration management tooling like Cloudformation, Terraform, or Ansible
• Proficiency with a programming language like Python, Go, or shell scripting.

Commitment to Diversity and Inclusion. As an Equal Opportunity Employer, we not only value diversity and equality, but we also empower our team members to bring their authentic selves to work every day. Our goal is to create a workplace that reflects the communities we serve and our global, multicultural clients. We recognize the power of inclusion, emphasizing that each team member was chosen for their unique ability to contribute to the overall success of our mission.

We do not discriminate based on race, religion, color, sex, gender identity, sexual orientation, age, non-disqualifying physical or mental disability, national origin, veteran status or any other basis covered by appropriate law. All employment decisions are based on qualifications, merit, and business needs.