Security Engineer - Enterprise/Operational

At Epidemic Sound, we make soundtracking content simple and inspiring with unlimited access to music and sound effects. Headquartered in Stockholm, with offices all over the world, we are a force of over 500 on a mission to soundtrack the world. Our innovative licensing model paves the way for creators - from YouTubers to small businesses to the world’s most recognizable brands such as Netflix, Redbull and BBC - to use sound to enhance their content while simultaneously supporting artists both financially and creatively. Epidemic Sound music is heard 2 billion times a day on YouTube alone and is recognized as one of Europe’s fastest-growing companies by the Financial Times. Epidemic Sound is backed by EQT, Blackstone, Creandum, Atwater Capital to name a few.

We are looking for a Security Engineer, specializing in Enterprise or Operational security. You will form a key part of the Security Division here at Epidemic Sound. You, along with your team, will help ensure our employees and services are protected from a wide range of online threats. Although we are a global company, this position will be based in our Stockholm office. If you are currently not in Stockholm, we're happy to help!

Job Summary: Increase the security maturity of our organization to help create and update systems to be efficient and ensure they are primed for ever-changing attack vectors. Work closely within a small team collaborating across our other central teams, such as IT and legal. Make specialized security knowledge accessible to wide audiences throughout the organization with great outreach and process design.

Responsibilities:

Working with teams and individuals to identify, track and fix vulnerabilities/risks in both systems and processes.

Automating security processes where feasible.

Helping to identify and evaluate new security tools and services.

Optimizing and managing our SIEM solution.

Sharing your knowledge through solid documentation, delivering internal tech talks and security awareness training to all levels of technical proficiency.

Assisting the team in conducting security reviews for new and existing business software and services.

Promoting secure ways of working across all areas of the organization, but especially in our core support services such as IT-Security and secure interactions with customers and vendors.

Managing physical security across our managed office spaces (Stockholm, New York)

Assisting with security incidents (including on-call), breaches and training exercises around them.

Working on a wide range of projects and new initiatives in the team.

Responding to security-related requests from across the organization.

Requirements:

Experience with vendor security assessments

Social engineering attacks and mitigation (eg. Phishing)Experience or interest in learning to use AI tooling to improve social engineering practice exercises

At least one programming or scripting language (Python, Go, Kotlin, Node.js, and Bash experience preferred)

At least one but preferred 3 years of experience with network security

Experience with Enterprise Security Tooling (Okta, SumoLogic, Crowdstrike, Island.io experience preferred)

Security features of the big public cloud providers (GCP preferred)

Kubernetes, Docker or any other containerization architecture

Identifying vulnerabilities in software, systems and processes

And a good understanding or working knowledge of common security frameworks (ISO 27001, SOC2, PCI-DSS, NIST, etc), compliance and regulatory requirements.

Preferred Qualifications/Bonus Skills:

Experience with physical security red teams operations not required but would be a great advantage.

SIEM systems

Penetration testing

OWASP Top 10

Common CI/CD systems and code repository tools like Github

Technical documentation

Assisting software engineers with code reviews and highlighting best practices.

Equal Opportunity Employer:
We believe that bringing people together from different backgrounds, experiences and perspectives makes for a healthy workplace, a more successful business and a better world. We value diversity and encourage everyone to come and soundtrack the world with us.

Application
Do you want to be a part of our fantastic team? Please apply, in English, by clicking the link below.