Security Expert

Unlock New Opportunities.

Every day is a chance to embark on a new career challenge.

RingCentral's cloud-based communications and collaboration software is revolutionizing the way people connect and interact. Our team is working tirelessly to ensure our products and services are secure, reliable, and trustworthy. We're expanding our Engineering Team to stay ahead of the competition and make a meaningful impact.

We're seeking a skilled professional to join our Information Security team as a Security Trust Engineer.

As a Security Trust Engineer, you will play a critical role in helping us ensure the security, reliability, and trustworthiness of our products and services. You will represent our Security Trust interests with Security Operations and Product Development teams, collaborating on requirements, gathering data, and compiling analyses to present to various enterprise audiences.

The ideal candidate will have a strong background in software engineering and data analysis, a deep understanding of security principles, and a proven track record of delivering robust and scalable solutions. They will be excited by the explosion of advancements occurring in security, data, and artificial intelligence and will contribute to shaping our security concentration.

Responsibilities:

Security Architecture & Design:

○ Collaborate with engineering teams to design, review, and implement secure architectures for new and existing products and features.

○ Identify and mitigate security risks early in the development process.

○ Provide expert guidance on security best practices, secure coding guidelines, and vulnerability remediation.

Secure Development & Automation:

○ Develop, implement, and maintain security tools, frameworks, and automation to enhance our security posture.

○ Automate security testing.

○ Implement security controls to be used by vendors and product teams.

Vulnerability Management & Incident Response:

○ Participate in security assessments, penetration testing, and configuration checking for newly deployed vendors.

○ Analyze and triage security vulnerabilities, working with security operations and application security teams to ensure timely remediation.

○ Assist in responding to vendor security incidents, performing root cause analysis, and implementing preventative measures.

Trust Asset Development and Program Reporting:

○ Maintain up-to-date representation of Security Trust team activities' ROI. This includes measurement of field team exposure to trust assets, and tracking how the assets enable revenue.

○ Use tools such as Power BI and Tableau to present a single pane of glass view to leadership, capturing the Security Trust team's sales enablement data and statistics to show growth, pain points, and related data.

○ Design and integrate tools, including leveraging AI, to support program needs of reporting on sales enablement and alerts in vendor monitoring .

○ Partner with other stakeholders to help improve Security Trust tools and processes.

Collaboration & Education:

○ Work closely with business owners, vendors, and operations teams to embed security into every stage of the vendor implementation process.

○ Mentor and educate business owners on security best practices for vendor deployments.

○ Stay up-to-date with the latest supply chain security threats, technologies, and industry trends.

Qualifications:

● 5+ years of experience in a technical security-focused engineering role, such as Security Engineer, Application Security Engineer, or supply chain engineering.

● Strong proficiency in at least one, and ideally multiple, programming languages such as:

○ Python (highly preferred for automation and tooling)

○ Go

○ Java

○ C++/C#

● Solid understanding of security principles and common attack vectors such as OWASP Top 10, common web application vulnerabilities, API security, access controls, network protocols.

● Experience with cloud security best practices and technologies (AWS, Azure, GCP)..

● Hands-on experience with security tools and technologies such as:

○ Vulnerability scanners (DAST/Burp Suite, Qualys)

○ Configuration testing (APIs, access controls)

○ Credential verification

○ JIRA, Confluence

● Experience building and securing RESTful APIs and microservices.

● Solid data mining and analysis expertise, including integrating data from multiple sources.

● Experience using Power BI or Tableau.

● Excellent problem-solving skills and the ability to work independently and as part of a team.

● Strong communication and interpersonal skills with the ability to explain complex security concepts to technical and non-technical audiences.

● Bachelor's degree in Computer Science, Information Security, or a related technical field,or equivalent practical experience.

Nice to Have:

● Relevant security certifications such as CISSP, CEH, OSCP, GSEC.

● Experience with blockchain application security or cryptography.

● Experience with compliance frameworks such as SOC 2, ISO 27001, GDPR.

What we offer:

• Mediclaim Benefits
• Paid Holidays
• Casual/Sick Leave
• Privilege Leave
• Bereavement Leave
• Maternity Leave
• Paternity Leave
• Wellness Coaching
• Employee Referral Bonus
• Professional Development Allowances
• Night Shift Allowances