Do the best work of your career as a champion for small and mid-size businesses.
BILL is a leader in financial automation software for small and midsize businesses (SMBs). As a champion of SMBs, we are dedicated to automating the future of finance so businesses can thrive. Hundreds of thousands of businesses trust BILL solutions to manage financial workflows, including payables, receivables, and spend and expense management. With BILL, businesses are connected to a network of millions of members, so they can pay or get paid faster. Through our automated solutions, we help SMBs simplify and control their finances, so they can confidently manage their businesses, and succeed on their terms.
BILL is a trusted partner of leading U.S. financial institutions, accounting firms, and accounting software providers. We have operations in San Jose, CA, Draper, UT, Houston, TX and are continuing to expand into other geographic locations. If you’re looking for a place that helps you do the best work of your career, look no further than BILL.
This position can be based in San Jose. We support a hybrid work environment with on-site and remote work days.
Make your impact within a rapidly growing Fintech Company
The Security Engineering team that is responsible for protecting the internal and external facing applications /API of bill.com. The team works closely with the engineering and technical operations teams to identify, track and mitigate security vulnerabilities in applications and the infrastructure. The team also collaborates with the Security Operations Center on engineering tasks related to security.
We’d love to chat if you have:
- Candidate must have a minimum of 7+ years of experience in Information Security with at least 3 years in Cloud Security and enterprise infrastructure security.
- Cloud Security Design,Implementation and Security controls Management with regular security assessment, monitoring and audits on cloud infrastructure. Experience with AWS IAM, Security Group management, AWS well architected framework. AWS and Certification will be a plus.
- Harden Cloud Infrastructure by introducing secure design defaults and security features endpoints & tooling
- Maintaining and enhancing the enterprise security log analysis and Security Information Event Management (SIEM) System. Support onboarding on new log sources and data normalization to effectively work with existing tools. Experience with Splunk and Cribl Infrastructure and query languages.
- Experience with developing and sustaining an efficient Vulnerability Management Process. Knowledge of Qualys/Nessus is a big plus.
- Good understanding of network security, infrastructure security, identity and access management, and operating systems
- Experience with Enterprise security.(Corporate security, WIFI, infrastructure security tooling)
- Comfortable with building WAF rules and Familiarity with bot detection via Cloud tools is a plus.
- Strong Linux skills are required, as is experience in physical, virtual and public cloud data center environments
- Experience with zero trust network access implementations.
- Python/Shell Scripting experience preferred
The estimated salary range for this role is noted below for our San Jose based role. Our ranges for each role and job level are based on a variety of factors including candidate experience, expertise, and geographic location and may vary from the amounts listed above. The role is also eligible for a competitive benefits package that includes: medical, dental, vision, life and disability insurance, 401(k) retirement plan, flexible spending & health savings account, paid holidays, paid time off, and other company benefits.