Senior Security Engineer

Remote - Bulgaria

At Cision, we believe in empowering every individual to make an impact. Here, your voice is heard, your ideas are valued, and your unique perspective fuels our collective success. As part of our global team, you'll thrive in an environment that champions curiosity, collaboration, and innovation, all while making meaningful contributions to the brands we accelerate.

Join us in shaping the future of communication and building authentic connections that matter. Whether you're solving complex problems or driving bold innovations, your growth is our success, and together, we’ll create the conversations of tomorrow.

Empower your impact at Cision. Be seen, be understood, be you.

We are looking for a Senior Security Engineer who is passionate about securing innovative products within the Public Relations software space. You will interact with stakeholders across Engineering, DevOps, Product, and IT Operations. If you enjoy working in a highly collaborative, fast-paced environment that approaches every day with a passion to build secure systems across a wide range of platforms, then welcome to Cision!

As a global leader in PR, marketing and social media management technology and intelligence, Cision helps brands and organizations to identify, connect and engage with customers and stakeholders to drive business results. PR Newswire, a network of over 1.1 billion influencers, in-depth monitoring, analytics and its Brandwatch and Falcon.io social media platforms headline a premier suite of solutions. Cision has offices in 24 countries throughout the Americas, EMEA and APAC. For more information about Cision's award-winning solutions, including its next-gen Cision Communications Cloud®, visit www.cision.com and follow @Cision on Twitter.

What We Offer

• Delivering strategic and tactical security guidance for IT and Engineering initiatives
• Designing and implementing security controls that support NIST, SOC2, ISO27001, FedRAMP, and TISAX frameworks
• Passion for Breaking and subsequently fixing a vulnerable web app
• Ensuring that all security, availability, confidentiality and privacy policies and controls are adhered to
• Exploiting various known vulnerabilities (published CVEs) as well as hands-on experience with Qualys or Tenable
• Dumping and cracking hashes, pass-the-hash attacks
• Strong communication skills are a must. Must have an approachable personality and the ability to clearly communicate and educate others regarding information security risks and best practices.

• 3-5 years of Information Security Related Experience
• Design and implementation of public cloud security architectures in AWS, Azure, and/or GCP
• Thorough understanding of Active Directory security
• Thorough understanding of the Software Development Lifecycle
• Comfortable with writing automation via Terraform, PowerShell, Python, Perl, or Bash Configuration management (Ansible, Chef, and/or Puppet)
• Comfortable with understanding and advising security implementations for Windows and Linux Systems
• Deep understanding for .NET software architecture
• Thorough understanding for concepts, and software such as: WAF, Firewalls, TLS, SSL, PKI, RSA, Encryption, Hashing etc.
• Experience in Software Development is a bonus