IT Security Engineer (EveryAction)
Overview
Are you a passionate innovator looking to harness the power of technology to do more good? If you have a vision for creating a positive impact and want to help build a legacy that stands the test of time, you've come to the right place. We have one goal, which is ever-present in our work: to empower organizations with innovative and intuitive software that enables them to help more people and make a difference in the communities they serve.
Join the second-largest and fastest-growing social good software company formed through the combination of CyberGrants, EveryAction, Social Solutions, and Network For Good. Through this partnership, we have the opportunity to empower nonprofits, public sector agencies, corporations, and individual donors to amplify social good and accelerate change.
We are currently operating as a remote workforce and have equipped our teams with the technology to stay connected to each other and our customers.
Responsibilities & Requirements
The EveryAction IT Security team is expanding and seeking an IT Security Engineer in our Somerville MA or Washington DC office. The IT Security Engineer will be solving problems which involve information security, directly and indirectly. This includes things like vulnerability management, data privacy, system uptime, and automation.
Because we're delivering software through a mix of growing and evolving applications, familiarity with the software development lifecycle is extremely helpful.
Like most IT teams, we handle a mixture of break/fix and project work. This position will focus on production, internet-facing systems. We expect the IT Security Engineer to spend about half of their time on projects, and about half on triage and troubleshooting. IT Security Engineer candidates should be comfortable interacting with staff at all levels of technical expertise. We have a team dedicated to end-user support but all IT staff, including this position, provide occasional end-user technical support.
Our team values communication and documentation. We have daily meetings to discuss work and solicit feedback. We document our work in a combination of Jira and Confluence. We use Slack all day.
What You'll Do:
- Solve problems independently and work well on cross-functional teams
- Respond to security events in a variety of environments
- Develop and implement security policies and procedures
- Research, plan, implement and maintain hardware, software and services in support of our corporate and customer-facing applications
- Provide cloud, colocation and on-premise infrastructure support
- Develop and update systems documentation
- Collaborate with our distributed IT teams and teams outside of IT
- Participate in maintaining our script resources
Who You Are:
- 4 to 8 years of professional IT experience
- At least 2 years in production, internet-facing-system support, involving
- Windows Server operating systems
- Web, email, and database application servers
- Thorough understanding of IP networking
- IP routing, addressing, and major protocols like SMTP, HTTP, DNS, and ICMP
- Understanding of enterprise IT operations concepts and best practices
- Configuration Management, Change Control, Redundancy, Security, Monitoring, Logging, Risk, Performance, Automation
- Excellent written and oral communication skills
- Experience with scripting languages (PowerShell, Windows batch file, VBScript, Bash, etc.)
- Strong attention to detail, with solid organizational and time management skills
Helpful but not essential experience:
- Source control, change management and ticket-tracking systems
- Endpoint Security via Next-Generation Antivirus tools
- Logging and log management tools
- WAF and DDoS protection systems
- Cloud Security via built-in cloud tools or using third-party solutions
- Knowledge of various compliance rules, regulations and practices (e.g., PCI, SOC 2, ISO 2700x, SOX (Sarbanes-Oxley), CIS Benchmark)
- IIS and SQL Server
- Linux operating systems
- Microsoft Azure and Amazon Web Services cloud computing operations
- VLANs and switch management
- VMWare server virtualization products
- Storage Area Networking
- Project planning and Agile methodologies
- Progressive political campaigns and/or issue advocacy organizations
Other Things:
- This is a full-time position located in our Somerville MA or Washington DC office. Although due to the current COVID environment, all positions can be remote to start.
- To support a range of multi-user systems, occasional planned work will be required outside of regular business hours, to minimize business impact.
- We maintain off-hours coverage for critical systems with an on-call rotation, in one-week shifts, to address issues outside of normal business hours. New staff typically join this rotation after 6 months.
About Us
Our Culture:
Our team is made up of industry experts and advocates who are 100% committed to supporting the doers of social good. We are currently undergoing an effort to create the vision and values that embody our collective organization and embrace the individuals who make up our community.
Some of our comprehensive and competitive benefits include:
- Generous PTO policy
- Equity for ALL regular, full-time employees from individual contributors to management - share in our success!
- Up to 15 paid company holidays including some commemorating social justice events and self-care
- Paid volunteer time
- Resources for savings and investments
- Paid parental leave
- Health, vision, dental, and life insurance with additional access to health and wellness programs.
- Opportunities to learn, develop, network, and connect
- When we can-company-sponsored events and swag!!
Job Tags
#LI-JH1 #LI-Remote