This job listing expired on Oct 14, 2020
Tweet

Job Responsibilities

The Information Security Operations Engineer will be responsible for helping Razer protect the data of our millions of customers worldwide.

The Engineer will be someone who embraces technology and process, and is also creative, flexible, interested in personal growth, and likes working in a team environment. This position will have potential for promotion based on demonstrated talent and contributions.

  • Develop, configure, and deploy security tools in the operations environment and perform test, audit, and other security measurement capabilities.
  • Run the Vulnerability Management lifecycle: discovery, risk analysis, review meetings, and remediation tracking, with periodic reports. This includes vulnerability scanning, bug bounty, patch management and other logging and audit tools.
  • Assist operations and development teams with security reviews as needed all throughout the software development lifecycle. Participate in team meetings to provide security subject matter expertise. Act as Tier 2 point of contact for security related monitoring.
  • Participate in incident response as needed and review and use results to refine the Incident Response process.
  • Contribute to the identification of risk, mitigation, and solution planning.
  • Daily operational tasks and other duties as assigned in support of information security and compliance.

Pre-Requisites

  • Bachelor's Degree
  • Security certifications – one or more of the following: CISSP, CCSP, CSSLP, Intermediate or Advanced GIAC certification relevant to the job responsibilities (e.g. GISP, GCUX, GMON, GRID, GCCC)
  • Knowledge of security processes, security, privacy, risk and compliance concepts, practices, and procedures, including: PCI-DSS, SOC1/2, GDPR, PDPA, ISO 2700x, etc.
  • Effective communication skills over email, IM, and phone. Ability to write documentation for a variety of audiences, including technical / system administrators, senior managers, sales & marketing, and customers.
  • Passion for technology and information security, with broad technical knowledge involving information systems such as servers, OS (Windows/Linux), networks, implementation processes, and applied security principles.
  • Balanced, clear judgment and flexible thinking. Strong critical thinking at both abstract and concrete levels and good knowledge of business processes.
  • Dedicated to the team and company.
  • Organizational skills to multitask, estimate resource needs and dependencies, and deliver on time.