Security Engineer (VC Backed Top 20 Music Company Globally)
Beatdapp
Vancouver, BC, Canada · Vancouver, BC, Canada · Colombia
Posted on Sep 25, 2024
About Us
Beatdapp is a venture-backed startup delivering the most advanced music streaming fraud and audit technology in the world. Our industry-leading software helps music labels and artists fight the over $2 billion royalties stolen from them each year. Plus, who doesn't love working with the world’s best streaming services, music labels, and artists all day!
We are a growing company specializing in fraud detection through machine learning models. Our technical team consists of 15 data engineers, 15 data scientists, and 5 full-stack developers. The Ops Engineering team, which you'll be joining, supports these groups by building automations and infrastructure as code.
The Role
We're seeking a Security Engineer to join our 2-person Ops Engineering team. This role will focus on managing and improving our security posture.
Key Responsibilities
Beatdapp is a venture-backed startup delivering the most advanced music streaming fraud and audit technology in the world. Our industry-leading software helps music labels and artists fight the over $2 billion royalties stolen from them each year. Plus, who doesn't love working with the world’s best streaming services, music labels, and artists all day!
We are a growing company specializing in fraud detection through machine learning models. Our technical team consists of 15 data engineers, 15 data scientists, and 5 full-stack developers. The Ops Engineering team, which you'll be joining, supports these groups by building automations and infrastructure as code.
The Role
We're seeking a Security Engineer to join our 2-person Ops Engineering team. This role will focus on managing and improving our security posture.
Key Responsibilities
- Lead quarterly access reviews covering cloud IAM policies, firewalls, and account permissions across sub-processors (GCP, AWS, GitHub, Google Workspace, Auth0, JIRA, Looker)
- Remediate security concerns using our Compliance Automation Software, Vanta
- Monitor hardware security using MDMs (Jamf, Vanta Agent, Google Endpoint Management) and communicate with team members about security issues
- Complete security questionnaires from clients' InfoSec departments
- Manage networking rules on our Zero Trust Network Access setup
- Oversee notification systems for security and compliance issues
- Monitor new infrastructure creation to ensure best practices are met
- Improve incident response reporting and conduct root cause analysis on incidents
- Develop Pub/Sub automations based on log-based findings
- Implement Data Loss Prevention (DLP) automations
- Write Terraform configurations for all new security-related configurations
- Create Python scripts to automate security processes and deploy them to Airflow for consistent execution
- Identify and address security concerns across the entire 50-person company
- Proficiency in Terraform for infrastructure as code