ActivTrak is a workforce productivity and analytics platform that helps organizations understand how people work, whether in-office or remote. Our cloud-based user activity monitoring platform collects and analyzes data and provides insights that help mid-market enterprises be more productive and compliant. We have more than 7,500 customers and over 100,000 users of our free version.
Position & Responsibilities:
As the first security engineer at ActivTrak, you will be responsible for leading our security efforts. You’ll be working directly with the engineering team and business operations teams to ensure the highest level of security for our customers. This is an opportunity to further develop your knowledge and experience with the latest industry best practices. Your primary responsibility will be building out and supporting our SOC II policies and processes with a focus on protecting our sensitive data while supporting a modern SAAS development process. You will also be responsible for running annual pen-tests, monthly vulnerability scans, and collaborating with 3rd party auditors.
Flexibility, communication, and a willingness to learn are of the highest importance. We run an advanced cloud-native application that supports hundreds of millions of events per day, leverage our petabyte+ of existing data, and supports our 150,000+ users as we disrupt the productivity analytics industry. We need your help to continue to grow.
Skills & Experience:
Design & build SOC II compliant systems (bonus points for HIPAA & PCI experience)
Assist in organizational security assessments and defining secure processes
Lead security awareness and security knowledge sharing with the Engineering team to foster a culture of security
Experience managing cloud infrastructure and employing best practices (GCP preferred), including network security, IAM best practices, and auditing
Collaborate with fellow engineers on secure development techniques by performing security design reviews on new and existing software and infrastructure
Experience with Kubernetes hardening
Fluency in at least one programming language (bonus points for python)
Experience with vulnerability management & pen-testing processes and tools
DevSecOps experience will be a huge plus, but not necessary
Linux administration expertise
Strong planning and organizational skills
Experience moving security concerns into the development and build process (shift left security)
Why Should You Apply?
Opportunity to work with and learn from a group of talented individuals from diverse backgrounds and cultures
A competitive compensation package that includes stock options and an annual bonus program
Medical, Dental, Vision, Life and AD&D and Disability insurances paid at 100% for employees and 50% for dependents (dependent on state)
Flexible Spending Accounts (FSA) for medical and dependent care
401k plan with Pre-tax and Roth options. Eligible on hire date
Flexible, unlimited paid time off including paid parental leave
Investment in your growth and development
A variety of fun and cool company swag
And much more…
Position is remote within the U.S.
Limited physical demands
Moderate noise level
ActivTrak is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. ActivTrak does not discriminate in employment on the basis of race, color, religion, sex, national origin, political affiliation, sexual orientation, marital status, disability, or age.