Senior Security Platform Engineer

The OnDeck Security team is looking for a senior level security-minded engineer help secure the financial data of small businesses nation-wide. As a Security Platform Management Engineer, you will select, configure, support and scale the tools and technologies used by the security team to build a highly scalable and manageable environment. These tools help analyze the security of OnDeck data, systems, and applications. You may also be creating shared APIs for use across applications within OnDeck. You will also look for ways to automate a number of existing support and event management processes. If you enjoy addressing security issues, collaborating with Development, QA, Analytics, IT, and DevOps teams, this position will provide you with a challenging opportunity to learn and grow. Our current tools infrastructure includes technologies such as Stash, Jenkins, Ansible, Jira, Artifactory, and Vagrant, plus monitoring tools like Nagios & NewRelic.
Bring your passion for learning, experimentation, and creative thinking!
Even if you don't fit this description exactly, but you've got a great technology operations management, Development Operations (DevOps), or Network Operations Center background having dealt with security and infrastructure issues, please contact us too!
Key Responsibilities:
Research new and existing security technologies to ensure that OnDeck is using the best security solutions for our environment, and that we can appropriately scale.
Ensure adequate visibility into application viability and performance via monitoring, thresholding and alerting you establish.
Create and maintain automation scripts using languages such as Ansible, Chef, Python, Powershell, bash, etc, to assist with deployments and maintenance.
Build tools and extend existing tools for internal use to support security's production engineering.
Build and implement process and policies with key stakeholders on how the various components of the security platform should be used.
Bring new automation technologies to bear to improve the quality of our production engineering efforts.
Perform Systems Integration for security tools that help security scale: Static code analysis, Infrastructure vulnerability, scanning, SIEM Log forwarding.
Deploy and improve upon security sensors throughout the environment such as, but not limited to: IPS, SIEM, DLP, Automated incident management, Forensics tools.
Work with End-Users of the tools and enterprise security applications on any issues discovered in the environment.
Willingness to be on call nights and weekends to troubleshoot and fix critical issues impacting the stability of the OnDeck production and security platforms
What you offer us:
If based in VA, willing to travel to NY office from time-to-time to work with Development, IT, QA, and DevOps teams as necessary for critical projects.
You have 3+ years experience with any combination of the following: HelpDesk or Infrastructure Engineering, DevOps, Software Development, Systems Integration Engineering.
You have 2+ years experience with any combination of the following: penetration testing, threat modeling experience, secure coding, identity management and authentication, cryptography, system and network security.
Some weekends or after-hours work may be necessary including on-call security operations support.
Experience developing at least two of the following: RESTful web services, Java web applications, JSON, Server-side JavaScript (e.g. Node.js), AngularJS, Python applications, bash.
Experience with infrastructure and development tools such as, but not identical to, ELK stacks, Vagrant, Ansible, Gradle, Maven, Stash, etc.
Experience with deploying, maintaining, and upgrading enterprise security applications including, but not limited to: Thales, zScaler, FireEye, Okta, Sailpoint, EnCase, exaBeam, Securonix, Tenable, Rapid7, Splunk, Vormetric, etc.
Experience with any combinations of the following: automation, secure coding, identity management and authentication, software development, cryptography, system and network security, development operations.
Experience with Amazon Web Services (AWS), Salesforce, Postgres, and MongoDB.
Experience and detailed technical knowledge in security engineering, network security, authentication, or security protocols.
Bachelors Degree or higher (or equivalent experience). Computer Science/Engineering major is preferable.
What we offer you:
Medical, dental, vision, and life benefits from day one.
Paid/flexible sick-leave, vacations, and holidays so you can take off the time that you need when you need.
Up to four months paid parental leave for all new parents. Adoption assistance with reimbursement of up to $5K. We want you to have time to bond with your new bundle of joy.
Order lunch on us from Seamless. You can order what you want, when you want and from where you want.
We'll match your 401(k) contributions and offer a discount through our Employee Stock Purchase Plan. All to complement your personal financial strategy.
We want to help advance your career. Take classes relevant to your job and the first $5K is on us.
Enjoy our annual company summer party, holiday party and department quarterly outings.
Semi-annual Hackathons to give our teams a fun way to innovate together and come up with awesome ideas.
Our partnership with SoFi gives you access to student loan refinancing, personal loans and even mortgages.
We work hard, we play hard. Build or join an OnDeck intramural club, group, and/or sports team and be part of our OnDeck Community.
Fully stocked kitchens with free snacks & drinks.
What excites us at OnDeck? Technology. Innovation. Small businesses. We believe in our employees and power their growth through being challenged every day and offering careers that inspire. We're all about teamwork, passion and making an impact. Oh and having fun ? Whether it's a game of Ping-Pong, team get-togethers or weekly social hours in the office.
OnDeck (ONDK) uses data aggregation and electronic payment technology to evaluate the financial health of small and medium sized businesses to efficiently deliver capital to a market underserved by banks. Through the OnDeck platform, millions of small businesses can obtain affordable loans. We are changing the way small businesses borrow money by combining our passion for Main Street with cutting-edge technology. We evaluate businesses based on their actual performance, not personal credit, and that's enabled us to say "yes" more often and faster than traditional lenders.
OnDeck Stats & In the News:
In 2015, OnDeck & JP Morgan Chase partner to offer small business loans, named the biggest deal in the history of marketplace lending
Our first $3 billion in loans led to 74,000 jobs and $11 Billion in U.S. economic impact.
On December 17, 2014 OnDeck rings in the biggest NYC tech IPO since 1999
OnDeck was New York's largest VC-backed tech exit ever
Awards we've received: and Great Place to Work 100 Best Workplaces for Millennials, 2015
Fortune/Great Place To Work Great Rated! People's Picks: 20 Great Workplaces in Financial Services, 2015
Crain's New York Best Places to Work, 2013, 2014, 2015
Colorado SHRM Best Companies to Work For in Colorado, 2015
Built in Colorado, Top 100 Digital Companies in Colorado, 2015
Forbes' America's Most Promising Companies, 2013, 2014
Selling Power Magazine Best Company to Sell For, 2013, 2014, 2015
Inc. 500-5000, 2013, 2014
Crain's New York Business Fast 50, 2013, 2014
OnDeck provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, OnDeck complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.
OnDeck expressly prohibits any form of workplace harassment based on race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, genetic information, disability, or veteran status. Improper interference with the ability of OnDeck's employees to perform their job duties may result in discipline up to and including discharge.
No recruiters or agencies, please.

Don't Be Fooled

The fraudster will send a check to the victim who has accepted a job. The check can be for multiple reasons such as signing bonus, supplies, etc. The victim will be instructed to deposit the check and use the money for any of these reasons and then instructed to send the remaining funds to the fraudster. The check will bounce and the victim is left responsible.

More Jobs

Senior Security Operations Engineer
Mc Lean, VA EMC
Senior Security Operations Engineer
Glen Allen, VA EMC
Staff/ Senior Cybersecurity/ Security Automati...
Mc Lean, VA The MITRE Corporation
Senior Information Assurance Engineer/Cyber Se...
Alexandria, VA Engility
Senior Security Researcher (Reverse Engineerin...
Centreville, VA Parsons Commercial Technology Group Inc.