This list contains only the countries for which job offers have been published in the selected language (e.g., in the French version, only job offers written in French are displayed, and in the English version, only those in English).
Get to Know Us: It's fun to work in a company where people truly believe in what they're doing! At BlackLine, we're committed to bringing passion and customer focus to the business of enterprise applications. Since being founded in 2001, BlackLine has become a leading provider of cloud software that automates and controls the entire financial close process. Our vision is to modernize the finance and accounting function to enable greater operational effectiveness and agility, and we are committed to delivering innovative solutions and services to empower accounting and finance leaders around the world to achieve Modern Finance. Being a best-in-class SaaS Company, we understand that bringing in new ideas and innovative technology is mission critical. At BlackLine we are always working with new, cutting edge technology that encourages our teams to learn something new and expand their creativity and technical skillset that will accelerate their careers. Work, Play and Grow at BlackLine! Make Your Mark: Reporting to the Senior Director of Information Security, the Sr. Information Security Engineer will play a lead role in executing security strategy and consulting on best-in-class security architecture and security posture for BlackLine. In this role you will provide on-call duties, manage/triage ticket queues, review access requests, review architecture, implement security solutions, collaborate with cross-functional teams, perform vulnerability management functions, and execute the evolution of Blackline’s Enterprise Information Security components.
Job Responsibility
Participate in a 'follow-the-sun' on-call schedule, acting as the primary responder during the India shift to monitor, triage, and manage the security alerts queue
Bridge the gap between research and remediation by developing manual runbooks (SOPs) and automated playbooks needed to handle threats and eliminate noise
Establish the operational scope and testing boundaries for security assessments and penetration tests, focusing on targeted risk discovery and impact
Apply a research-first mindset to incident response, demonstrating the critical thinking needed to independently triage threats and figure out new tools across a varied security landscape
Operationalize security infrastructure through Terraform, with the foundational knowledge to independently research and implement automation across various providers and platforms
Manage the operation of key security technologies, including Endpoint Detection and Response (EDR), Data Loss Prevention (DLP), and Web Application Firewalls (WAF)
Leverage AI and LLMs to accelerate security analysis, automate repetitive tasks, and drive operational efficiency across the security stack
Flex into evolving security initiatives and technical projects as they arise, taking ownership of tasks that fall beyond the initial scope of this role
Define effective information security standards applicable to specific environments
Create and maintain operational reports and security metrics, translating raw data into the technical insights required for data-driven decision-making
Serve as a technical leader and mentor, providing guidance to junior engineers and collaborating with cross-functional teams on security best practices.
Requirements
5+ years of hands-on information security experience, including 1 year of experience managing Web Application Firewalls (WAF)
Practical experience with cloud security platforms like SCCE, AWS Security Hub, or Azure Security Center, and the technical 'scrappiness' to research and utilize new security services across a multi-cloud environment
Strong problem-solving and analytical skills with the ability to identify security risks and propose effective solutions
Highly autonomous and productive in performing activities, requiring minimal direction from management
Proven ability to leverage scripting languages, such as Python, Bash, and PowerShell, to interface with applications and/or available APIs
Expertise in Windows and with a working knowledge of Linux/Unix (advanced Linux skills are a big plus)
Working knowledge of network security—through understanding of the OSI model and comprehensive knowledge of common protocols and services for levels 3 through 7
Advanced written and verbal communication skills including the ability to present technical subjects to non-technical audiences
Maintain technical depth in common vulnerabilities and exploitation techniques to independently research, triage, and remediate complex security findings.
Nice to have
Experience in securing Kubernetes and containers
Hands-on experience with securing AI systems and LLMs
Working knowledge of WMI and WSH in a modern security context
Utilize outside the box thinking to define new and improved solutions or optimize current processes and tools.