Lead Security Engineer

Overview of Swiftly, Inc.

Swiftly, Inc. is a leading organization dedicated to enhancing transit efficiency across various cities globally. The company’s mission is to provide real-time passenger information, improve service performance, and streamline day-to-day operations for transit agencies. With over 180 agencies spanning 12 countries, including notable partners like LA Metro, MARTA, SEPTA, and MBTA, Swiftly is reportedly able to enhance on-time performance by as much as 40% while increasing passenger information accuracy by 50%.

Company Culture and Engineering Philosophy

At Swiftly, engineering transcends mere coding. The company's approach emphasizes empowering product teams to not only develop features but also to conceptualize and iterate on them effectively. The goal is to strike a balance between minor improvements and substantial innovations while adhering to the best practices in software development. The engineering team is motivated by the overarching goal of positively influencing transit riders’ experiences, prioritizing security and decision-making guided by customer needs.

The Lead Security Engineer Role

Swiftly is seeking a Lead Security Engineer to bolster their security framework, which includes both strategy and implementation. This role involves collaborating with various teams such as engineering, product, and marketing to develop secure solutions tailored for cloud-native environments. The position emphasizes the integration of security protocols throughout the development lifecycle, ensuring that security becomes a standard part of the product development process.

Responsibilities

The responsibilities outlined for the Lead Security Engineer are comprehensive and challenging. Key tasks include:

• Risk Management: Manage the security risk register and threat models, which involves identifying, prioritizing, and addressing security risks throughout the application and infrastructure.

• Secure Design: Craft secure architectural frameworks for Swiftly’s SaaS platform, mobile applications, and IOT integrations, focusing on critical areas such as authentication, authorization, and data protection.

• Security Tool Management: Evaluate, implement, and manage security tools across the organization to ensure a proactive security posture.

• DevSecOps Integration: Implement DevSecOps practices within CI/CD pipelines to identify vulnerabilities and configuration issues early in the development process.

• Compliance Oversight: Handle compliance issues by maintaining existing certifications like SOC 2 and leading initiatives for new certifications as required for market expansion.

• Incident Response: Develop and maintain effective incident response protocols, ensuring the ability to address security incidents promptly and efficiently.

• Security Culture: Promote a culture of security awareness within the organization by delivering training and mentoring engineers on secure design principles.

  

Skills Required

Candidates for this position should possess at least 5 years of experience in security engineering. Specific skills and experiences include:

• Strong background in cloud-native security (AWS preferred).
• Proficiency in infrastructure-as-code tools, such as Terraform.
• Familiarity with implementing security within CI/CD workflows.
• Excellent threat modeling and risk assessment capabilities.
• Knowledge of compliance frameworks and audit processes, ideally SOC 2.
• Strong communication skills to facilitate collaboration between technical and non-technical teams.

Ideal Candidate

The ideal candidate should not only be technically skilled but also embodies values such as teamwork, diversity, communication, and a drive for positive impact. The organization appreciates candidates who are inclined toward sustainability and mobility, seeking individuals who envision real-world applications of their work.

Salary Expectations

According to Swiftly’s pay transparency guidelines, the salary range for this position is:

• US Salary Range: $140,000 - $200,000
• Canadian Salary Range: $165,000 - $200,000

Note that salaries may vary based on experience, skill set, and geographic location. The total compensation package also includes stock options, comprehensive benefits, and perks designed for employee well-being.

Benefits Overview

Swiftly is dedicated to employee satisfaction and provides a variety of benefits, which include:

• Competitive salary
• Equity compensation
• Medical, Dental, and Vision insurance
• Retirement plans with employer matching
• Flexible spending account (FSA)
• Home office setup reimbursement
• Monthly reimbursement for cell and internet expenses
• Flexible paid time off (PTO)
• 16 paid holidays per year
• 8 weeks of fully paid leave for childbirth/adoption

Work Environment and Expectations

Although based in San Francisco, Swiftly values remote opportunities. The company allows the flexibility of work locations, particularly within Canada. Remote employees are generally expected to travel about 1-2 times a year for team offsite events to foster a collaborative atmosphere.

In summary, applying for the Lead Security Engineer role at Swiftly, Inc. presents an exciting opportunity to influence security practices within a forward-thinking organization while contributing significantly to the enhancement of public transit systems globally.

This job offer was originally published on himalayas.app