Senior IoT Security Engineer - Technical.ly

Senior IoT Security Engineer Philadelphia

STRATIS IoT |  Philadelphia | Dev / Eng

Job Description
Perks + Benefits
Company Culture
Technical.ly Coverage

WHO WE ARE

RealPage is changing the technology real estate industry and our teammates know how to think big and leave their mark. If you want to join a globally progressive and inclusive company devoted to excellence, we are looking for you!

We are the leading global provider of software and data analytics to the real estate industry. We navigate clients toward the right decisions with data and technology insights they can only get from RealPage. Serving our clients is our highest priority and RealPage teammates are our greatest asset.

Come join a team where your work makes an impact every day!

WHAT YOU’LL DO

As the Internet of Things (IoT) Security Engineer, you will partner with the Chief Information Security Officer (CISO) and the Community Connect business to plan, organize and conduct security assessments and risk mitigation plans for our use of IoT technologies.  Your focus will be tailored to broad risk assessment for deployed IoT technologies in operational environments to ensure secure use by a broad set of clients and customers.  As you lead these capabilities, you will also articulate a shared vision of best in class IoT security and compliance programs to best leverage technology, people and processes to protect RealPage from threats that may attempt to harm our IoT based businesses. 

PRIMARY RESPONSIBILITIES

  • Report to the CISO and directly support the Community Connect business to ensure secure operational deployments of IoT capabilities.   
  • Partner with leadership to govern IoT cyber security and risk posture of the Community Connect organization. 
  • Provide leadership with risk managed remediation plans to address identified risk in IoT capabilities.  
  • Partner with existing Community Connect team to support application security capabilities to include static and dynamic testing.  Ensure effective reporting and risk managed remediation actions occur. 
  • Assess/manage third party/supply chain risk that may impact secure deployment of IoT capabilities. 
  • Build and maintain effective relationship with RealPage business stakeholders within not only technical teams but business units as well. 
  • Deliver targeted security and risk communications (verbal and written) to business leadership 
  • Contribute to the development and implementation of IoT security architecture, and the design of Information Security service and processes supporting the Community Connect business. 
  • Advise stakeholders on how to achieve the relevant controls and assist with solutions to support them. 
  • Ensure that processes are documented and communicated in language that is relevant and understandable to non-technical audiences as well as to be implementable by technical teams. 
  • Any other duties relating to the remit of a role of this standing as required by the needs of the business. 

REQUIRED KNOWLEDGE/SKILLS/ABILITIES

  • Bachelor’s degree and minimum 5 years of experience in Information Security, Information Assurance and/or Cyber Security space. Relevant experience and professional certifications may be considered in lieu of a degree. 
  • Experience in embedded/IoT device security or web services security specifically, with experience of performing threat modeling, software security audits, risk management, vulnerability discovery and analysis. 
  • Experience with Linux, Cloud platforms (AWS, Azure, or GCP), Kubernetes, Docker, or other container platforms 
  • Experience in the information security field designing and implementing enterprise security solutions. 
  • Experience with common software and system security vulnerabilities and methods of exploitation to include memory corruption, privilege escalation, web application exploitation, file format vulnerabilities, protocol-based weaknesses, access control weaknesses. 
  • Excellent verbal and written communication skills with a wide range of audiences including technologists, executives, business stakeholders and IT team members. 
  • Must be a critical thinker with strong problem-solving skills. 
  • High level of personal integrity, and the ability to professionally handle confidential matters and show an appropriate level of judgment and maturity. 
  • High degree of initiative, dependability and ability to work with little supervision. 
  • Ability to think at systems / architecture level I.e. How do all the parts of the solution fit together not just design at element level. 
  • Interest and predisposition to learn new systems and technologies. 
  • Knowledge of common wireless connectivity protocols with focus on protocol and implementation security vulnerabilities (e.g. Bluetooth, WiFi, 802.15.4, ZWave, ZigBee, LoRA) 

PREFERRED KNOWLEDGE/SKILLS/ABILITIES

  • Advanced degree in applicable field 
  • Knowledge of hardware security mechanisms, including secure boot, trusted execution environments 
  • Experience with static and dynamic tools for vulnerability detection and exploit mitigation techniques, 
  • Interest in industry conferences or meet-ups such as Defcon, B-sides, etc. 
  • Cyber security risk management experience, e.g. conducting assessments, identifying risks, and recommending solutions.  
  • Professional information security certification, such as a CISSP, CRISC, CISA, etc. 
  • Expertise with NIST and ISO 27000 series, particularly NIST SP 800-53, NIST SP 800-171, ISO 27001/2.

WHAT WE OFFER

At RealPage, we’re always looking for talented professionals who thrive in a learning work environment that continually supports individual greatness. We foster a culture of innovation and creativity. It is the things you do that bring out the best of you and RealPage.

 

RealPage considers qualified applicants without regard to gender, sexual orientation, gender identity, religion, race, national origin, age, veteran, or disability status. We celebrate diversity and are committed to building an inclusive work environment where all teammates feel a sense of belonging while bringing their authentic self to the table and being valued for it.

Apply Now
Read More
Health & Wellness
  • Dental Insurance
  • FSA
  • Health Insurance
  • HSA
  • Life Insurance
  • Long Term Disability
  • Mental Health Benefits
  • Short Term Disability
  • Vision Insurance
Other
  • Access to Coaching (Health, Professional, Life)
  • Charitible Donation Matching Programs
  • Pet Friendly Office
  • Travel Required
Parental Benefits
  • Family Medical Leave
  • Nursing Room
  • Parental Leave
Perks & Discounts
  • Casual Dress
  • Offsite Company Events
  • Snacks Provided
  • Special Discounts
Professional Development
  • Employee Recognition Programs
  • Training & Development Budget
  • Tuition Reimbursement
PTO/Flexibility
  • Commitment to Work/Life Harmony
  • Flexible Work Schedule
  • Paid Holidays
  • Paid Sick Days
  • PTO
Retirement & Stock Options Benefits
  • 401k with company contribution

What do employees love about the work they get to do at STRATIS?

Our team gets to tackle challenges every day by doing the latest and greatest in smart access and the IoT world. Our company is managing IoT devices in multifamily spaces, meaning we have to balance the privacy and autonomy of the resident versus the responsibilities and needs of the people who run the property. On top of that, we need to make sure the nitty-gritty of the tech is working.

STRATIS’ tech plays an important role in the day-to-day lives of the clients we serve. Our team is driven to serve our clients so families across the globe enjoy their safe, comfortable homes.

 

How do you acclimate a new hire in a remote working environment?

After you join the team, we hold an onboarding process that includes informative conversations about STRATIS’ history and mission. We prioritize this, since it’s a chance for you to learn why your work and time at STRATIS is so valuable. By the way, our encouragement of new ideas led to an employee suggesting a more robust approach to onboarding mid-pandemic and the development of our current process — so we mean it when we say we want to hear what you think.

STRATIS also offers a mentorship program, so you can connect with a seasoned employee. We aim to welcome you into our collaborative and supportive network.

 

What will I learn at STRATIS?

No question goes unanswered at STRATIS. Once you join the squad, reach out to any team member whose work you’re curious about. Our Slack is very much driven by an open-door policy.

Though we have grown over the years, STRATIS has a startup spirit and loves finding go-getters that see growth in their own roles and professional careers. If you want to think big, we can’t wait to meet you.

Sign-up for daily news updates from Technical.ly