
Security Engineer
Lucid Software is the leader in visual collaboration, helping teams see and build the future from idea to reality. We hold true to our core values: innovation in everything we do, passion & excellence in every area, individual empowerment, initiative and ownership, and teamwork over ego. At Lucid, we value diversity and are dedicated to creating an environment and culture that is respectful and inclusive for everyone. Lucid is a hybrid workplace. We promote a healthy work-life balance by allowing employees to work remotely, from one of our offices, or a combination of the two depending on the needs of the role and team.
Since the company’s founding, Lucid Software has received numerous global and regional recognitions for its products, business, and workplace culture. These include being listed to the Forbes Cloud 100, Fortune Best Workplaces in Technology, and the PEOPLE Companies that Care list all for multiple consecutive years. Top businesses use our products all around the world, including customers such as Google, GE, and NBC Universal. Our partners include industry leaders such as Google, Atlassian, and Microsoft.
Lucid’s customers trust us to keep their data secure. This trust is critical to our mission to help teams see and build the future. A successful Security Engineer at Lucid will be passionate about safeguarding customer and corporate data by proactively identifying and proposing solutions to remediate risks.
Responsibilities:
- Design, implement, and maintain security controls for Lucid's information systems.
- Evaluate security technologies and configuration for business tools.
- Perform effective security design reviews on complex system architecture proposals.
- Proactively identify threats and opportunities for improvements in security controls and processes across the business.
- Design solutions to mitigate risk and support business objectives.
- Promote and exemplify Lucid’s core values.
Requirements:
- Passion for security
- 2+ years of experience in a Security or IT related field within a SaaS environment
- Adversarial mindset: and enjoys breaking, testing, and improving security controls by challenging assumptions and identifying gaps others may overlook.
- Experience establishing a culture of practical security over security theater (i.e., tying security controls to specific risks).
- Ability to establish valuable automation (i.e. via Python, Bash, Powershell and others).
- Familiarity with common identity management solutions such as Active Directory, Azure, and Okta along with their related security controls.
- Understanding of web applications and related security controls.
- Understanding of AWS common infrastructure components; especially those focusing on security.
- Able to work independently and effectively with several different internal teams.
- Excellent verbal and written skills with great attention to detail.
Preferred Qualifications:
- 1+ years experience with security controls in business systems (e.g., Google Workspaces, Anti-malware, Okta, etc.).
- General knowledge of and skill in applying risk management principles and practices
- Practical understanding of common security frameworks and principles (e.g. NIST 800-53, ISO 27001, SOC 2, GDPR, CCPA, etc).
- Security-related certification(s) (e.g., Security+, Networking+, CISSP, OSCP, CISM, or CRISC)
- Bachelor’s degree in a related field
- Understanding of common fleet management systems such as Jamf, InTune, and Chef.
- Understanding of common forensics techniques and methodologies along with their prerequisite logging and alerting.
#LI-DA1
Apply for this job
*
indicates a required field