Principal Information Security Engineer

Job Summary

MathWorks has a hybrid work model that enables staff members to split their time between office and home. The hybrid model provides the advantage of having both in-person time with colleagues and flexible at-home life optimizations. Learn More: https://www.mathworks.com/company/jobs/resources/applying-and-interviewing.html#onboarding.

Our team is dedicated to safeguarding the MathWorks network, encompassing both the infrastructure and application deployment pipelines across on-premises and cloud environments. As a vital component of the Information Security team within the broader IT organization, we play a crucial role in supporting the internal MathWorks environment. Our core mission is to maintain the organization's safety by proactively identifying, mitigating, and reducing cybersecurity risks. Through our efforts, we ensure the integrity, availability, and confidentiality of our systems and data, thereby enabling MathWorks to continue its industry-leading work without interruption.

MathWorks nurtures growth, appreciates diversity, encourages initiative, values teamwork, shares success, and rewards excellence.

Responsibilities

In this role, you will be instrumental in enhancing the security posture of MathWorks by focusing on comprehensive vulnerability management across our network, including infrastructure, applications, and cloud environments. You will:

• Enhance and expand vulnerability scanningacross MathWorks’ business applications, infrastructure (servers, containers), CI/CD pipelines, and third-party components.
• Lead operational vulnerability managementactivities, including scanning, triage, and response, especially for expanded scopes and cloud platforms, ensuring compliance.
• Assist in cloud-native application security projects.
• Automate vulnerability management workflowsto increase efficiency and repeatability.
• Collaborate with IT and development teamsto integrate security practices into the development lifecycle, to enhance DevSecOps capabilities.
• Develop and refine security proceduresto reflect best practices in vulnerability management and cloud-native security capabilities.

This role has an emphasis on both operational and strategic elements of vulnerability management and cloud-native security efforts.

Qualifications

• A bachelor's degree and 10 years of professional work experience (or equivalent experience) is required.

Additional Qualifications

Required Knowledge and Education:

• Bachelor’s degreein Computer Science, Information Security, or a related field.
• Understanding ofcompliance standards (ISO, CMMC, SOC 2, etc.).
• Knowledge of cloud computing platforms(AWS, Azure, GCP), including cloud security best practices.
• Familiarity with cloud-native application security protocolsand best practices.

Required Experience and Skills:

• Experience in information security, specifically in vulnerability management, cloud security, and application security.
• Proven experience with vulnerability scanning toolsand operational management in diverse environments.
• Hands-on experience withCloud-Native Application Protection Platforms (CNAPP), Cloud Posture Management Platforms (CSPM), or similar.
• Skill in automating security processes and workflowsfor improved efficiency and repeatability.
• Experience with DevSecOps principles and implementing security processes within CI/CD pipelinesfor cloud-native applications.
• Experience with automation tooling such as Puppet or Ansible
• Strong analytical skillsand the ability to work independently on complex security tasks.