Start your new career at Cvent

Refer Job:
  • Share this on Facebook
  • Share this on LinkedIn

Add Add to Saved Jobs


Senior Information Security Engineer 

Cvent’s Information Security team is rapidly growing and seeks a Senior Information Security Engineer to play a crucial role in expanding our footprint and protecting the organization.  This position is a hands-on role that involves analysis of network incidents, web threats, security architectures, new technology designs, and other potential areas where security is needed.  This person should also be able to adapt quickly and find creative ways to promote security in a fast-paced and high-profile technology landscape. You will work with the latest web, system, and network technologies, and utilize security tools such as next generation firewalls, security incident and event management, web application firewalls, intrusion detection systems, data loss prevention software, and vulnerability and compliance management software.  A thirst for knowledge and the desire to continuously stay abreast of new developments in the dynamic security space is a must.

What You Will Be Doing

  • Participate in network and web architecture design reviews and provide security recommendations
  • Communicate with other departments in the company to ensure that security is championed throughout their process
  • Perform routine audits to ensure compliance with security policies and other industry standards (i.e. PCI, SOX, HIPAA, ISO27001)
  • Perform vulnerability assessments, security control checks, and reporting
  • Correlate and tune network, system, and application devices for security events
  • Participate in re-architecture plans of existing infrastructure and security products
  • Research and evaluate the latest security products to combat the latest threats

What You Need for this Position

  • 5 years of experience in network and web security with exposure to mobile security a plus
  • Bachelors degree in an Information Technology related field of study or equivalent experience; relevant, industry recognized security certification such as CISSP or CISA
  • Ability to adapt to a hyper-growth pace and changing priorities
  • Excellent problem solving and analytical skills; outstanding oral and written communication skills
  • Expert knowledge of information security principles, networks, operating systems, web applications and a level of familiarity with malicious code and common techniques used by hackers
  • Knowledge of high traffic and other cloud-based infrastructures and how they affect security needs (i.e. ticketing infrastructure, AWS infrastructure, SOA architecture)
  • Understanding of TCP/IP, networking concepts, and services such as DNS, SMTP, HTTP, HTTPS
  • Some level of programming/scripting: Java, ASP.Net, Perl, Python, Ruby, Shell scripting, etc
  • Experience with IDS/IPS, NGFW, SIEM, WAF, DLP
  • Experience with vulnerability assessment tools such as Nessus, Nmap, Metasploit, Paros, Burpsuite, BackTrack/Kali Linux
  • Experience with incident response, and understanding malware such as worms, virii, and trojans
  • Self-motivation and the ability to work under minimal supervision are a must