Sr. Security Engineer, Identity & Access Management (Remote - US) at DISQO

+ 5 more | Remote
Sorry, this job was removed at 12:08 p.m. (CST) on Friday, April 15, 2022
Find out who’s hiring remotely Nationwide
See all Remote jobs Nationwide
Apply Now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.
DISQO is changing the way that the world’s largest brands, agencies and consumer intelligence companies get to know their consumers. We’ve built the first identity-based platform that combines consumer attitudes and behaviors together to power the most accurate and predictive insights solutions for our customers, and we do all of that with the willing participation of our consumers and without using outdated technologies like third-party cookies. We help our customers get a cross-platform view into consumer sentiment, measure advertising effectiveness, analyze consumer purchase journeys, and ultimately grow their brands.

Our mission at DISQO is to engage people to share their opinions and behaviors openly to help our customers make the right decisions. With over one million active members sharing their attitudes and behaviors, DISQO is looking to expand, improve and create world-class applications for people to openly share their data for research.

Check out the DISQO Developer Blog for the latest from our DISQOTECH team.

In this role, you will have the opportunity to design, implement and manage our global identity, access and secrets management architecture. Using your knowledge and experience in security engineering, authentication, authorization, cryptography, and application security you will create roadmaps and enhance the existing identity ecosystem for secure integration, utilization, and maintenance. You’ll collaborate with colleagues, stakeholders and external team members supporting architecture assessment, vulnerability assessment, and security operations. In addition, research, testing and advising of new technology security requirements and future capabilities will be pursued to drive objectives, strategies and measurements of the Identity, access and secrets management ecosystem.

What you will do:

  • Work with technical and business leaders to document current identity access, secrets management, endpoint (MDM) security requirements and architecture, research best practices, conduct trend analysis, and identify gaps in developing future-state IAM designs and specs.
  • Work with product teams to provide guidance and best practices for authN, authZ and secrets management for web applications, infrastructure, SaaS, and APIs.
  • Develop technical standards and provide subject matter expert-level advisory services regarding accepted best practices for IAM and secrets management.
  • Provide security architecture and consulting services for business units and IT organizations.
  • Develop identity, access and secrets management controls for both on-premises and cloud including privilege access management (PAM), multi-factor auth (MFA), encryption key and certificate management.
  • Maintain and update IAM policies and standards on a yearly basis
  • Identify opportunities to integrate and automate tools and systems to create efficiencies and achieve scale.
  • Design and deliver policies, standards and best practices for SSH key management, Certificate management, PKI, privileged identity management Collaborate with governance, risk and external stakeholders to ensure secret standards and auto-rotation of keys/credentials are implemented and operating effectively.
  • Mentor and assist engineers and share/implement best practices.
  • Develop training and awareness materials to facilitate knowledge sharing across the company.
  • Develop RBAC & ABAC standards and review users and roles for adherence to the principle of least privilege, drive user access recertification process
  • Review and approve access requests
  • Provide coverage and periodic on-call support for the IAM services.

What you bring to the table:

  • A team player who brings innovative security knowledge, communication skills.
  • Leverages critical thinking, experimentation, data, and best practices to achieve desired business outcomes.
  • Experience communicating with technical and non-technical stakeholders across multiple business units
  • Excellent written and verbal communication skills.5+ years of Information security engineering experience
  • 2+ years experience in cloud security
  • 3+ years hands on design engineering and deployment experience using IAM technology systems
  • 2+ hands on experience with AWS cloud services including Kubernetes, IAM, KMS, Cognito, Secrets manager, Certificate manager, HSM 
  • Demonstrable knowledge of current technologies in authentication, federation, and identity management space, such as TLS, U2F/UAF/FIDO2,, JWT, Kerberos, SSO, SAML, MFA, X.509, SSH keys, API keys, PKI, WS-Federation, SOAP,WS-Security, WS-Trust, LDAP, ADFS, Open-ID, and OAuth
  • Knowledge of modern enterprise identity architectures such as ZTNA, SASE, and passwordless architecturesExperience in designing, assessing or implementing security controls, or reviewing security posture of the identity ecosystem.
  • Experience with common automation tools such as Gitlab CI/CD, Terraform.
  • Experience with threat molding techniques such as STRIDEExpert knowledge of encryption key lifecycle management, SSH keys, KMS, PKI and certificates
  • Deep knowledge with services and tools related to identity and secrets management such as, Okta, Gsuite, 1Password, HashiCorp Vault
  • Familiarity with privacy regulations and security frameworks such as; GDPR, CCPA, NIST 800-53, NIST CSF, OWASP top 10
  • Knowledge of Blockchain technology
  • Knowledge of endpoint security designs (Device AuthN, VPN, MDM, Yubikey and integrated endpoint security solutions with IAM tools) 
  • Security certification such as; Security+, CEH, CISA, CISSP, AWS Security Specialty or other similar professional designations is preferred.
  • Experience with proof of concepts (POC), feature exploration and incorporation of the assessed in the existing identity ecosystem.
  • Experience with monitoring/logging IAM services, including applications and systems, and resolve or escalation issues as and when required.
  • Ability to write and review Python, knowledge of Go is a plus
  • A foundational belief that security succeeds to the extent that it empowers -- that your mission instead saying “no, you cannot” is to say “yes, here is how”

#LI-Remote #LI-SG1

Perks & Benefits:

·100% covered Medical/Dental/Vision for employee, 80% for dependents
·Generous PTO policy
·Flexible work hours
·Quarterly Offsites
·Life Insurance
·Paid Maternity/Paternity leave
·Disability Insurance
·Travel Assistance Program
·24/7 Counseling Services offered to employees

DISQO is an equal opportunity employer. Discovery, innovation, and growth are possible when we open ourselves to new possibilities, perspectives, and approaches. That’s why, at DISQO, we welcome, support, and empower individuals from diverse backgrounds. Exceptional teams are rooted in extraordinary people, each with a unique story and a compelling set of skills. DISQO does not discriminate against employees based on race, color, religion, sex, national origin, gender identity or expression, age, disability, pregnancy (including childbirth, breastfeeding, or related medical condition), genetic information, protected military or veteran status, sexual orientation, or any other characteristic protected by applicable federal, state or local laws.

*Recruiting firms that submit resumes to DISQO without first entering into a written contract will not be entitled to any compensation on candidates referred by that firm.

Read Full Job Description
Apply Now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

Technology we use

  • Engineering
  • Product
  • Sales & Marketing
    • C++Languages
    • GolangLanguages
    • JavaLanguages
    • JavascriptLanguages
    • PHPLanguages
    • PythonLanguages
    • ScalaLanguages
    • SqlLanguages
    • SwiftLanguages
    • ReactLibraries
    • ReduxLibraries
    • AngularJSFrameworks
    • LaravelFrameworks
    • Node.jsFrameworks
    • SparkFrameworks
    • SpringFrameworks
    • TensorFlowFrameworks
    • MySQLDatabases
    • PostgreSQLDatabases
    • RedisDatabases
    • RedshiftDatabases
    • Google AnalyticsAnalytics
    • MixpanelAnalytics
    • IllustratorDesign
    • PhotoshopDesign
    • JIRAManagement
    • TrelloManagement
    • WordpressCMS
    • SalesforceCRM
    • SendGridEmail
    • OnGageEmail

An Insider's view of DISQO

What are some social events your company does?

We have weekly happy hours, lunches and after hours activities. They include Nerf gun fights, karaoke, bowling, weekly basketball games, ping pong, puppy day, trivia games and a lot more!



What projects are you most excited about?

DISQO's consumer facing product, Survey Junkie, is an awesome project to work on. Between building new features and responding to customers, at the rate we move, the project never gets old. Also, working on something that is used by millions of people is super fulfilling as I know everything I do makes an impact in the lives of others.


Senior Software Engineer

How has your career grown since starting at the company?

DISQO granted me the opportunity to learn the fundamental framework to building a successful product while focusing on the user. As a recent college graduate, I can’t imagine to be working with a greater company than DISQO as they really encourage the work hard, play hard culture to all its employees.


Product Manager

What is your vision for the company?

We want to build a trusted world where all brand decisions result in ultimate consumer satisfaction, a world where brands and consumers connect to create the best products & experiences together.

It's quite an ambitious & technically challenging goal, with an impact so massive, it will benefit all of humanity.



What’s the vibe like in the office?

The office vibe at DISQO can simply be described as fun. Whether it’s making watermelon slushee’s in the kitchen or playing a random game of UNO, there’s always something going on. Even when the work gets intense, you can always hear laughter throughout the office.


Talent Acquisition Coordinator

What are DISQO Perks + Benefits

DISQO Benefits Overview

Fully subsidized medical, dental and vision PPO plan
Flexible schedule
Gym membership
Fully stocked kitchen and catered lunches
Fun culture - happy hours, games, off-site team building activities
Smart passionate coworkers
Remote work options

Volunteer in local community
Friends outside of work
Eat lunch together
Intracompany committees
Daily sync
Open door policy
Team owned deliverables
Team based strategic planning
Group brainstorming sessions
Open office floor plan
Documented equal pay policy
Dedicated Diversity/Inclusion Staff
Highly diverse management team
Unconscious bias training
Diversity manifesto
Mean gender pay gap below 10%
Diversity Employee Resource Groups
Hiring Practices that Promote Diversity
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability Insurance
Dental Benefits
Vision Benefits
Health Insurance Benefits
Life Insurance
Pet Insurance
Wellness Programs
Onsite Gym
Team workouts
Mental Health Benefits
Retirement & Stock Options Benefits
Company Equity
Employee Stock Purchase Plan
Performance Bonus
Child Care & Parental Leave Benefits
Generous Parental Leave
Flexible Work Schedule
DISQO provides employees with a flexible work schedule that includes Core hours, Flexible start and end times.
Remote Work Program
Company sponsored family events
Vacation & Time Off Benefits
Unlimited Vacation Policy
Generous PTO
Paid Holidays
Paid Sick Days
Perks & Discounts
Beer on Tap
Casual Dress
Commuter Benefits
DISQO offers employees who commute or forego a parking pass completely, a monthly stipend.
Company Outings
DISQO hosts company outings Quarterly. Our previous quarterly events include bowling, a scavenger hunt in Santa Monica and a pool party in Malibu.
Free Daily Meals
Game Room
Stocked Kitchen
DISQO has a fully stocked kitchen including unlimited snacks and all kinds of beverages.
Some Meals Provided
Happy Hours
Relocation Assistance
Fitness Subsidies
DISQO provides discounted membership to 24 Hour Fitness.
Home Office Stipend for Remote Employees
Professional Development Benefits
Job Training & Conferences
Diversity Program
Lunch and learns
Every few weeks, we host Taco Talks, where representatives from different departments share recent wins, ongoing projects, and more.
Cross functional training encouraged
Promote from within
Time allotted for learning
Online course subscriptions available
Customized development tracks
Paid industry certifications

More Jobs at DISQO

Apply Now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.
Save jobView DISQO's full profileSee more DISQO jobs