Senior Information Security Engineer

This is a Utah HQ position-Hybrid in office and remote.

Alianza is on a mission to be the world's best cloud-based telecommunications platform for service providers. The Senior Information Security Engineer drives our security strategy forward and ensures our platform remains secure, compliant, and trusted by our customers.

As a Senior Information Security Engineer, you'll have a significant impact across our organization, leading security initiatives that protect our cloud infrastructure, customer data, and product ecosystem. You'll work autonomously to identify and resolve complex security challenges while mentoring others and championing security excellence throughout the company.

Core Responsibilities

Security Operations & Implementation

• Develop, execute, and track the performance of security measures to protect information, network infrastructure, and computer systems
• Perform and document cybersecurity, vulnerability, and riskassessments and implement remediation plans
• Research security vulnerabilities and implement countermeasures
• Monitor cybersecurity trends and adapt security strategies accordingly

Strategy & Planning

• Gather, analyze, and document security requirements for systems and applications
• Define and document security specifications for new and existing systems
• Recommend security solutions to management
• Develop cost-effective solutions to cybersecurity challenges

Governance & Compliance

• Participate in sponsor audits
• Create comprehensive security reports and analysis for stakeholders

Training & Communication

• Educate and train staffininformation security best practices
• Communicate security requirements and recommendations across the organization

Required Qualifications

Experience

• 10+ years of experience in information security, with at least 2 years in senior or lead roles
• Proventrack recordof leading complex security initiatives in cloudand on premenvironments
• Experience securing SaaS platforms and multi-tenant architecture
• Hands-on experience with security incident response and investigation

Technical Skills

• Deep understanding of cloud security (AWS/Azure/GCP) and cloud-nativearchitecture

• Experience with securing on prem environments
• Expertisein application security, including secure SDLC, SAST/DAST, and code review
• Strong knowledge of network security, cryptography, and identity management
• Experience with infrastructure as code and security automation
• Proficiencyin at least one programmingor scriptinglanguage (Python,Bash,Java, etc.)
• Excellent understanding of technology infrastructures using Firewalls, VPN, Data Loss Prevention, and IDS/IPS
• Develop, execute, and track the performance of security measures to protect information, network infrastructure, and computer systems

Leadership & Communication

• Demonstrated ability to work independently on ambiguous problems
• Experiencecollaborating across all aspects of the organization andleading technical initiatives
• Excellent written and verbal communication skills for technical and executive audiences

Preferred Qualifications

Certifications & Education

• Certifications such as CISSP, GSEC, CCEP, CRCM, or CISM desired
• Security certifications such as CISSP, SANS, or cloud-specific security credentials

Domain Expertise

• Experience in telecommunications or VoIP security

• Knowledge of compliance frameworksand standards(SOC2,NIST 800-53, ISO 27001, CIS Controls)
• Experience withpenetration testing
• Background inDevSecOpsand CI/CD security

Technical Expertise

• Experience building security tools and automation
• Knowledge of zero-trust architecture principles
• Familiarity with security monitoring and SIEM platforms
• Understanding of API security and microservicesarchitecture