Come be a part of our mission and make a meaningful and positive impact with the industry leading provider of language services for the Deaf and heard-of-hearing.

Benefits:

• Paid Vacation Time and Paid Sick Time and Paid Holidays
• 401k 6% match with immediate vesting
• Nationwide Medical Insurance plans and coverage (Medical, Dental/Orthodontia, Vision)
  • TeleDoc
  • HSA company match
  • 3 Medical plan options including a Low Deductible PPO Medical Plan Offering
• Employee Assistance Program
• Engaged Employee Resource Groups
• Outstanding Learning and Career Development Opportunities

Pay Range: The estimated salary range for this position is $96,690.00 to $144,980.00 annually. Actual pay may vary up or down depending on job-related factors which may include knowledge, skills, experience, and location. In addition, this position may be eligible for incentive compensation.

This position can be 100% Remote or Hybrid for local candidates

Essential Duties and Responsibilities

• Collaborate with / provide hands-on training to engineering and QA teams to ensure secure development standards and secure coding best practices are followed.
• Work with engineering / IT teams to develop and maintain secure development practices.
• Work closely with functional-area architects, engineering, and security specialists throughout the company to ensure adequate security solutions and controls are in place throughout all IT systems, cloud systems and platforms to mitigate identified risks sufficiently, and to meet business objectives and regulatory requirements.
• Collaborate with Product Managers, Platform Leads, and Information Security teams, to design and implement secure solutions.
• Develop / maintain integrated testing processes with QA and security teams.
• Lead in defining and developing test plans and test automation to streamline security testing processes.
• Master security tools to provide SAST, DAST, IAST, SCA, and other security testing.
• Perform, review and assess the security testing completed on products and systems to ensure they meet security standards.
• Identify potential threats to, and opportunities for, Sorenson's services and products.
• Document test findings & provide comprehensive test reports & analysis from test activities per regulatory requirements.
• Develop and maintain documentation and diagrams for security tools, system environments, and cloud operations.
• Work with the Cloud Operations / Engineering teams in the definition and implementation of cloud security standards and best practices
• Provide technical advice to internal organizations and product owners on compliance and information security, specializing in application-level security and secure coding techniques.
• Support the regulatory compliance initiatives, processes, and documentation for ISO 27001, FedRAMP, SOC2, etc...
• Build automation to actively audit the infrastructure for security misconfigurations.
• Work within a DevOps security model so that security is automated and elastic across Sorenson platforms.
• Codify traditional security processes to take humans out of the equation making security consumable as a service.
• Develop security and compliance capabilities in support of DevOps processes.
• Collaborate with other engineers, the client team, to continue finding new areas that can be improved by bringing a DevOps mindset to public clouds, private clouds, backup systems and monitoring solutions.

Equal Employment Opportunity:
Sorenson Communications is an Equal Opportunity, Affirmative Action Employer.

Company Summary

Our Mission...Harnessing the power of language, we connect diverse people and enrich the human experience.

Our Vision...To provide global language services that expand opportunities, nurture belonging, and empower the world to connect beyond words.

As one of the world's leading language services providers, Sorenson combines patented technology with human-centric solutions. We strive to increase diversity, equity, inclusion, and accessibility for underrepresented people through communication solutions for all: call captioning and video relay services, over-video and in-person sign language and spoken language interpreting, translation, real-time captioning, and post-production language services.

Sorenson's impact vision and plan extends to supporting employment opportunities for diverse employees, customers, and communities. As a minority-owned company, we are committed to expanding opportunities for underserved communities while promoting an inclusive workplace for our own employees.

Innovative - Consistently introduces new ideas and demonstrates original thinking
Detail Oriented - Capable of carrying out a given task with all details necessary to get the task done well

Bachelor of Science of Computer Science (required)

1 - 2 years: *Networking, Unix / Linux Administration, Windows Administration, Database programming / Administration *Log management and/or correlation systems (Splunk, ELK, etc) *Scripting / coding languages like Python, Ruby-on-Rails, Java, Javascript, Perl, C++,etc *Consuming API / micro-services (required)
0 - 1 years: *Experience in penetration testing or other security-related testing such as fuzz testing, software composition analysis, static analysis, abuse case testing and known vulnerability scanning *Experience with the development, deployment and automation of security solutions in large enterprise environments to connect to cloud solutions such as AWS and Azure while maintaining secure operations (preferred)