Junior Security Engineer
We are seeking a Junior Security Engineer to support our application security program and our security operations center (SOC).  Responsibilities will include alert triage, incident handling, and finding security issues in our i-Ready product. The successful candidate will help define procedures and choose tools to improve our security posture in support of the Curriculum Associates’ mission.

Why join this team:

We are growing our security team!  We’re looking for someone who wants to make a difference and have an impact on our path and direction.  You will have the opportunity to learn and work on many areas of cyber security at Curriculum Associates, while building up our AppSec Program and Security Operations Center.

At Curriculum Associates, we believe a diverse team leads to diversity in thinking, making our products better for teachers and students. If you read this job description, feel energized by what you see here, and believe you could bring passion and commitment to the role, but you aren’t sure you meet every qualification, please apply! Above all, we are looking for the right person!

About i-Ready

In a single program, i-Ready integrates powerful assessments and rich insights with effective and engaging instruction in reading and mathematics to address students’ individual needs.  i-Ready empowers teachers every day to make more informed instructional decisions and motivates students with access to their own personalized path to growth.  Want to be part of our impact?  Join us!

The impact you’ll have:

  • You’ll identify security vulnerabilities in our products and offer remediation guidance.
  • You’ll investigate security events using firewall logs, SIEM solutions, EDR solutions, and other security tools to identify and prevent or mitigate incidents as they occur.
  • You’ll coordinate with the security and IT teams to escalate issues.
  • You’ll help administer and create processes and policies for our SOC tools.
  • You’ll document incidents to contribute to incident response and disaster recovery plans.

Who we’re looking for:

  • 2 years cyber security experience/exposure (may be substituted with degree or academic work in cyber security)
  • Programming experience with Java and/or Python
  • Experience investigating security incidents with firewalls, SIEMs, and endpoints
  • Analytical mind with strong interpersonal skills

We’d also love to see, though not required:

  • Experience with AWS infrastructure
  • Some audit and compliance (ISO-27000, NIST-800, SOC, PCI) efforts and understanding

Compensation & benefits: Competitive salary with great benefits including health, dental, and vision insurance, employer contributed 401K.