Versana
Security Engineer
Versana, New York, New York, us, 10261
About Us:
Versana is an industry-backed fintech on a mission to make the syndicated loan market better. By digitally capturing agent banks' data on a real-time basis, Versana provides unprecedented transparency into loan-level details and portfolio positions, bringing efficiency and velocity to the entire market. Through our platform, participants can rest assured they are accessing the loan market's most credible source of deal information.
About You:
Versana is looking for a Security Engineer to join our InfoSec squad. You will play an essential role in safeguarding our organization's information systems and data from potential threats and vulnerabilities. You will work collaboratively with senior engineers and cross-functional teams to enhance our security posture using cutting-edge technologies.
Key Responsibilities:Identify and help remediate application security vulnerabilities, ensuring compliance with industry standards and best practices.Assist in the configuration and management of cloud security tools (e.g., firewalls, Cloud Security Posture Management tools).Monitor cloud environments for security alerts and unusual activities.Participate in incident response activities, including containment, eradication, and recovery efforts.Assist in securing continuous integration and continuous deployment (CI/CD) pipelines.Participate in threat modeling and secure design reviews to enhance the security of new and existing applications.Assist in conducting security code reviews and static/dynamic application security testing (SAST/DAST).Support the implementation of security policies, procedures, and standards.Stay up-to-date with the latest security trends, threats, and technology advancements.Collaborate with development teams to integrate security best practices into the application development lifecycle.Must Haves:
2+ years of experience in software development.2+ years of experience in cloud security or a related field.Understanding of Application Security principles and web application vulnerabilities such as OWASP Top 10, their risk and remediationsBasic understanding of cloud computing principles and services (e.g., AWS, Azure, Google Cloud).Exposure to cloud security tools such as firewalls, intrusion detection systems, and vulnerability scanners.Strong communication and teamwork skills.Detail-oriented with a proactive approach to identifying and mitigating security risks.Nice to Haves:
CompTIA Security+, CompTIA CySa+, Certified Ethical Hacker (CEH), or similar certifications.Infrastructure-as-Code knowledge such as Terraform.Experience in the financial sector
$100,000 - $120,000 a year
Equal Opportunity Employer
We are committed to providing equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.
Versana is an industry-backed fintech on a mission to make the syndicated loan market better. By digitally capturing agent banks' data on a real-time basis, Versana provides unprecedented transparency into loan-level details and portfolio positions, bringing efficiency and velocity to the entire market. Through our platform, participants can rest assured they are accessing the loan market's most credible source of deal information.
About You:
Versana is looking for a Security Engineer to join our InfoSec squad. You will play an essential role in safeguarding our organization's information systems and data from potential threats and vulnerabilities. You will work collaboratively with senior engineers and cross-functional teams to enhance our security posture using cutting-edge technologies.
Key Responsibilities:Identify and help remediate application security vulnerabilities, ensuring compliance with industry standards and best practices.Assist in the configuration and management of cloud security tools (e.g., firewalls, Cloud Security Posture Management tools).Monitor cloud environments for security alerts and unusual activities.Participate in incident response activities, including containment, eradication, and recovery efforts.Assist in securing continuous integration and continuous deployment (CI/CD) pipelines.Participate in threat modeling and secure design reviews to enhance the security of new and existing applications.Assist in conducting security code reviews and static/dynamic application security testing (SAST/DAST).Support the implementation of security policies, procedures, and standards.Stay up-to-date with the latest security trends, threats, and technology advancements.Collaborate with development teams to integrate security best practices into the application development lifecycle.Must Haves:
2+ years of experience in software development.2+ years of experience in cloud security or a related field.Understanding of Application Security principles and web application vulnerabilities such as OWASP Top 10, their risk and remediationsBasic understanding of cloud computing principles and services (e.g., AWS, Azure, Google Cloud).Exposure to cloud security tools such as firewalls, intrusion detection systems, and vulnerability scanners.Strong communication and teamwork skills.Detail-oriented with a proactive approach to identifying and mitigating security risks.Nice to Haves:
CompTIA Security+, CompTIA CySa+, Certified Ethical Hacker (CEH), or similar certifications.Infrastructure-as-Code knowledge such as Terraform.Experience in the financial sector
$100,000 - $120,000 a year
Equal Opportunity Employer
We are committed to providing equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.