Security Engineer

  • Engineering
  • Taipei, Hong Kong, Singapore, Taiwan

Security Engineer

Job description

Easyship is revolutionizing logistics for eCommerce. With our all-in-one cloud based shipping software, businesses of all shapes and sizes have the tools needed to scale globally. At Easyship we believe in accelerating borderless commerce. We’re proud that a diversity of small business owners, crowdfunding campaigns, and global brands trust Easyship as their gateway to the world.


“We envision a frictionless economy where creators can use one platform to ship products to anyone, anywhere. When you grow, we grow.” Tommaso Tamburnotti, Co Founder.


Easyship is building tomorrow’s logistic infrastructure, today. Our team is continuously looking to reach new heights, whether it’s learning about new technologies or improving your own skillset, Easyship is prepared to empower you to grow. We believe that when we inspire each other, we grow together.

Easyship is recruiting brilliant, curious, and driven individuals to help us scale our innovative technology worldwide. Headquartered in New York with offices in London, Hong Kong, Singapore, Melbourne, Toronto, and Taipei – our team is global and growing. We encourage you to apply if a challenge excites you. If you enjoy the company of talented people. If you would dedicate yourself to a simple mission: to make shipping easy for everyone.

We operate with a global footprint, but we’re still tiny relative to the opportunity ahead, so there is still much to do. Join us and help put borderless commerce within reach of every entrepreneur.

Position Title: Security Engineer
Based in: Taipei, Hong Kong, and Singapore.

Reports to: Lead DevOps

Key Relationships: Tech Team, Customer Service Team, Data Team and Marketing

Team

Job Purpose:

We are looking to hire a security engineer with an analytical mind and a detailed understanding of cybersecurity methodologies. Security engineers are expected to have meticulous attention to detail, outstanding problem-solving skills, work comfortably under pressure, and deliver on tight deadlines.

To ensure success, a security engineer must display an excellent understanding of technology infrastructures using Firewalls, VPN, Data Loss Prevention, IDS/IPS, Web-Proxy, and Security Audits. Top candidates will be comfortable working with a

variety of technologies, security problems, and troubleshooting of the network.


Job Responsibilities:


【Primary responsibilities】

1、Planning, implementing, managing, monitoring, and upgrading security measures for the protection of the organization's data, systems, and networks.

2、Troubleshooting security and network problems.

3、Responding to the system and/or network security breaches.

4、Ensuring that the organization's data and infrastructure are protected by enabling the appropriate security controls

5、Testing and identifying network and system vulnerabilities.

6、Daily administrative tasks, reporting, and communication with the relevant departments in the organization.

7、Manage our existing bug bounty program, handle the relationship with the researchers, reply to vulnerability reports and liaise with the engineering teams to address issues.

8、Conducting security audits and assessments.

9、Developing and providing employee training/drills on security-related topics

【Secondary responsibilities】

1、Participating in the change management process.

2、Support Senior Engineer & Tech team members on their development projects

3、Responsible for understanding and implementing security policies and industry best practices & compliance



Requirements

Skills & Personal Qualities:

【Requirements】

1、A degree in computer science, IT, systems engineering, or related qualification.

2、Minimum 2 years of work experience with incident detection, incident response, and forensics.

3、Experience with Firewalls (functionality and maintenance), Kubernetes, and security-related tools.

4、Ability to work under pressure in a fast-paced environment.

5、Strong attention to detail with an analytical mind and outstanding problem-solving skills.

6、Great awareness of cybersecurity trends and hacking techniques.



<Nice to have>

  • Proficiency in Python, C++, Java, Ruby, Node, Go, and/or Linux Shell.


<Plus>

1、Experience with Ruby on Rails, Docker, Google Kubernetes Engine or Google Cloud Platform is a plus.

2、Experience with security policies and regulatory compliance (i.e. PCI, GDPR, SOC2) is a plus.

3、Experience with Penetration Tests or Bug Bounties, either conducting or assessing reports is a plus




Benefits:

  • Competitive compensation package

  • Company Equity

  • Gym & Wellness Reimbursement

  • Generous Vacation Policy

  • Duvet Day - Perfect for those cold winter days, when you don’t want to escape the warmth of your bed!

  • Mental Health Day - You deserve a day off! A chance to recharge and enjoy ‘Me Time’

  • Flexible working approach

  • Professional Development

  • Unlimited Coffee, Drinks & Healthy Snacks

  • Office PlayStation Games

  • As we expand, the potential to work in one of our international offices

  • Annual Summit in one of our headquarters, for you to collaborate with the team

You will have the opportunity to work with a global team, filled with smart, ambitious and like minded colleagues. We have built an inclusive culture which supports and enables you to grow. Come and join the Easyship team!