About Mindvalley:Mindvalley is the leading and most promising ed-tech company to date. We dominate the US market for Personal Growth Education. We are empowering athletes within every major US sports team and promoting successful learning strategies in major companies.We're currently on a mission to build the most advanced and complete learning experience to enable personal growth and development for all our amazing customers. We innovate tools that induce enlightenment within every aspect of human life. We are seeking the best engineers to build the best and most advanced education platform our species has seen. The goal to mark our success is: to power up to 100 countries, powering every Fortune 500 company, and progressing humanity towards a better future.About the Role:
This role is designed for a professional with a robust technical background in security SaaS cloud solutions, particularly within the Google Cloud Platform. The ideal candidate will have experience interfacing with IT, Developers, and Platform Engineers and advocating for integrating security practices within DevOps to transition towards DevSecOps.
Responsibilities:
Manage and optimize security tools and services across SaaS platforms, with a particular focus on Google Cloud Platform (GCP).
Assist in the deployment and maintenance of security solutions and ensure their operational health.
Conduct thorough security reviews and audits of our codebase to ensure compliance with best practices in secure coding.
Develop and fine-tune monitoring and alerting systems to identify and respond to security threats promptly.
Triage security alerts and manage incident response activities, documenting and reporting on incidents as required.
Engage in proactive threat analysis to anticipate and mitigate potential security issues.
Conduct vulnerability assessments and participate in penetration testing activities.
Assist in evaluating our cloud configurations and security architectures to identify and remedy vulnerabilities.
Collaborate with the cybersecurity manager to prepare reports and recommendations based on findings.
Skills & Qualifications:
Expertise in application security best practices, including but not limited to OWASP Top 10 vulnerabilities, secure coding standards, and software development lifecycle security.
Familiarity with automated security testing tools and techniques.
Relevant certifications such as GCP Professional Security Engineer, OSCP, or similar, will be highly regarded.
Excellent problem-solving skills and the ability to communicate technical information effectively.
Proactive, self-motivated individual capable of managing multiple priorities in a dynamic, geographically dispersed environment.#J-18808-Ljbffr