Security Engineer

  • Engineering
  • Taipei City, Taiwan

Security Engineer

Job description

Easyship is revolutionizing logistics for eCommerce. With our all-in-one cloud based shipping software, businesses of all shapes and sizes have the tools needed to scale globally. At Easyship we believe in accelerating borderless commerce. We’re proud that a diversity of small business owners, crowdfunding campaigns, and global brands trust Easyship as their gateway to the world.


“We envision a frictionless economy where creators can use one platform to ship products to anyone, anywhere. When you grow, we grow.” Tommaso Tamburnotti, Co Founder.


Easyship is building tomorrow’s logistic infrastructure, today. Our team is continuously looking to reach new heights, whether it’s learning about new technologies or improving your own skillset, Easyship is prepared to empower you to grow. We believe that when we inspire each other, we grow together.

Easyship is recruiting brilliant, curious, and driven individuals to help us scale our innovative technology worldwide. Headquartered in New York with offices in London, Hong Kong, Singapore, Melbourne, Toronto, and Taipei – our team is global and growing. We encourage you to apply if a challenge excites you. If you enjoy the company of talented people. If you would dedicate yourself to a simple mission: to make shipping easy for everyone.

We operate with a global footprint, but we’re still tiny relative to the opportunity ahead, so there is still much to do. Join us and help put borderless commerce within reach of every entrepreneur.

Position Title: Security Engineer

Reports to: Lead DevOps

Key Relationships: Tech Team, Customer Service Team, Data Team and Marketing

Team

Job Purpose:

We are looking to hire a security engineer with an analytical mind and a detailed understanding of cybersecurity methodologies. Security engineers are expected to have meticulous attention to detail, outstanding problem-solving skills, work comfortably under pressure, and deliver on tight deadlines.

To ensure success, a security engineer must display an excellent understanding of technology infrastructures using Firewalls, VPN, Data Loss Prevention, IDS/IPS, Web-Proxy, and Security Audits. Top candidates will be comfortable working with a

variety of technologies, security problems, and troubleshooting of the network.

Job Responsibilities:

1、Planning, implementing, managing, monitoring, and upgrading security measures for

the protection of the organization's data, systems, and networks.

2、Troubleshooting security and network problems.

3、Responding to system and/or network security breaches.

4、Ensuring that the organization's data and infrastructure are protected by enabling the

appropriate security controls

5、Participating in the change management process.

6、Testing and identifying network and system vulnerabilities.

7、Daily administrative tasks, reporting, and communication with the relevant

departments in the organization.

8、Manage our existing bug bounty program, handle the relationship with the

researchers, reply to vulnerability reports and liaise with the engineering teams to

address issues.

9、Conducting security audits and assessments.

10、Support Senior Engineer & Tech team members on their development projects

11、Responsible for understanding and implementing security policies and industry best

practices & compliance

12、Developing and providing employee trainings/drills on security related topics

Requirements

Skills & Personal Qualities:

1、A degree in computer science, IT, systems engineering, or related

qualification.

2、Minimum 2 years of work experience with incident detection, incident

response, and forensics.

3、Experience with Firewalls (functionality and maintenance), Kubernetes and

security related tools.

4、Proficiency in Python, C++, Java, Ruby, Node, Go, and/or Linux Shell.

5、Ability to work under pressure in a fast-paced environment.

6、Strong attention to detail with an analytical mind and outstanding

problem-solving skills.

7、Great awareness of cybersecurity trends and hacking techniques.

8、Experience with Ruby on Rails, Docker, Google Kubernetes Engine or Google

Cloud Platform is a plus.

9、Experience with security policies and regulatory compliance (i.e. PCI, GDPR,

SOC2) is a plus.

10、Experience with Penetration Tests or Bug Bounties, either conducting or

assessing reports is a plus


Benefits:

  • Competitive compensation package

  • Company Equity

  • Gym & Wellness Reimbursement

  • Generous Vacation Policy

  • Duvet Day - Perfect for those cold winter days, when you don’t want to escape the warmth of your bed!

  • Mental Health Day - You deserve a day off! A chance to recharge and enjoy ‘Me Time’

  • Flexible working approach

  • Professional Development

  • Unlimited Coffee, Drinks & Healthy Snacks

  • Office PlayStation Games

  • As we expand, the potential to work in one of our international offices

  • Annual Summit in one of our headquarters, for you to collaborate with the team

You will have the opportunity to work with a global team, filled with smart, ambitious and like minded colleagues. We have built an inclusive culture which supports and enables you to grow. Come and join the Easyship team!