Security Engineer (Contract)

Responsibilities

• Security Tooling Operations & Security Engineering
• Coordinate the deployment, configuration, testing, monitoring, and ongoing maintenance of security technologies, including SIEM, EDR, DLP, WAF, CASB, Secure Web Gateway, URL filtering, email security, and application/vulnerability scanning platforms.
• Lead small-to-medium-sized security initiatives from requirements gathering through design, testing, pilot execution, and implementation.
• Support proof-of-concept evaluations and product assessments to ensure proposed solutions align with security strategy, standards, and industry best practices.
• Act as a service or tool owner by identifying enhancements, maintaining operational runbooks, and recommending improvements for tools under your responsibility.
• Develop and maintain procedures, workflows, architecture diagrams, and operational playbooks that support security monitoring and engineering activities.
• Security Monitoring, Triage & Incident Response
• Investigate and triage security events using technologies such as SIEM, EDR, DLP, WAF, CASB, Secure Web Gateway, and email security solutions.
• Detect, respond to, and support investigations of security incidents while documenting root-cause analysis and lessons learned.
• Follow established incident response procedures and playbooks, escalating critical findings appropriately and efficiently.
• Apply analytical and adversarial thinking to identify, protect, detect, respond to, and recover from common cyber threats and attack vectors.
• Vulnerability Management & Security Testing
• Perform and support secure baseline reviews, infrastructure scanning, endpoint scanning, application vulnerability assessments, penetration testing validation, and AI red-teaming exercises.
• Review vulnerability findings for accuracy and completeness while partnering with stakeholders to prioritize remediation efforts based on risk.
• Escalate critical vulnerabilities, zero-day threats, and high-priority risks while supporting rapid mitigation efforts.
• Contribute to continuous improvements in vulnerability management workflows through automation and the integration of security testing into CI/CD pipelines.
• Security Risk Assessments, Threat Modeling & Third-Party Risk
• Conduct security risk assessments for internal initiatives, product enhancements, vendors, and productivity tools.
• Perform STRIDE-based threat modeling for internal projects and AI-enabled solutions, producing actionable recommendations and clear risk reports.
• Apply a risk-based approach to evaluating Agentic AI technologies and AI-related security risks.
• Conduct vendor risk assessments within OneTrust and support broader third-party risk management activities.
• Continuous Improvement & Security Enablement
• Identify opportunities to strengthen controls, imp

Additional Information

At Varicent, we're not just transforming the Sales Performance Management (SPM) market-we're redefining how organizations achieve revenue success. Our cutting-edge SaaS solutions empower revenue leaders globally to design smarter go-to-market strategies, maximize seller performance, and unlock untapped potential. Varicent stands at the forefront of innovation, celebrated as a market leader in the 2025 Forrester Wave Report for SPM , 2023 Ventana Research Revenue Performance Management (RPM) Value Index , Gartner Peer Insights , 2024 Gartner SPM Market Guide , and G2. Our solutions are trusted by a diverse range of global industry leaders like T-Mobile, ServiceNow, Wawanesa Bank, Shaw Industries, Moody's, Stryker and hundreds more. Here's why you'll thrive at Varicent: Innovate with Purpose: Build impactful solutions for customers worldwide. Join Excellence: Work in a diverse, collaborative, and innovative team. Shape the Future: Lead in redefining revenue optimization. Grow Together: Unlock your potential in a supportive environment. Join us at Varicent-where your talent and ambition meet limitless opportunities for success! Help Us Build a More Secure Future Our Information Security team is looking for a motivated, hands-on Security Analyst I to support the execution of day-to-day security operations while contributing to foundational security engineering initiatives. This role provides exposure across multiple security domains, including security monitoring and incident response, security tooling and controls engineering, application security testing, vulnerability management, security risk assessments, and emerging AI security practices. As a Security Analyst I, you will partner closely with stakeholders across Cloud Operations, Engineering, IT, and business teams to strengthen our security posture through operational excellence, continuous improvement, and a risk-based approach to decision-making. This is an exciting opportunity for a security professional who enjoys solving complex challenges, driving meaningful improvements, and making a measurable impact across the organization. Contract Length: 1 Year (Maternity Leave Backfill)

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at varicent? Share your experience