Key skills
Artificial IntelligenceAnalyticsSplunkService MeshRisk ManagementCollaborationCustomer SuccessSales
About this role
Docusign is a leading company in e-signature and contract lifecycle management, providing solutions that bring agreements to life for millions of customers worldwide. The Security Solutions Engineer will act as a trusted technical advisor, assisting public sector customers in understanding and adopting Docusign’s platform while addressing their security and compliance needs.
Responsibilities:
- Lead cross-team collaboration to deliver secure capabilities that accelerate processes and strengthen initiatives
- Partner with account executives, solution consultants, and customer success teams to help position Docusign’s public sector compliance story, respond to customer security inquiries, and guide prospective customers through risk and compliance discussions
- Lead the effort to mature the risk management process and develop playbooks and/or procedures to support technical teams on compliance initiatives
- Lead the adoption of artificial intelligence to streamline and automate audit processes
- Measure success by addressing systemic vulnerabilities and risks by working with Prod/Dev, Sec Architecture, and infrastructure teams to operationalize or mitigate known security gaps
- Drive the solution and compliance initiatives that enable Docusign to maintain federal and DoD authorizations while also supporting sales teams in communicating our security capabilities to public sector customers
- Develop and maintain System Security Plans (SSPs), ATO package deliverables, and compliance artifacts to ensure successful submissions, annual assessments, and continuous monitoring
Requirements:
- BA/BS degree or equivalent work experience
- 5+ years of experience with security controls and compliance related to NIST and FedRAMP
- Experience with risk management frameworks, including risk ratings and the ability to contextualize data based on risk (e.g., utilizing CVSS, CVE, NVD, NIST, DoD SRG)
- Experience developing and implementing solution plans centered on integrating various security technologies and key security solutions
- Experience automating audit evidence collection across security and compliance frameworks (e.g., FedRAMP, NIST 800-53)
- Experience with compliance and assessment of cloud native platforms and services (Data warehouse, Service Mesh, Container Images and Microservices Orchestration)
- Experience creating and utilizing reports from security monitoring tools such as Tenable, Sysdig, Splunk, Windows Defender, Log Analytics (or similar) products
- Proficient in rigorously validating that implemented security controls are fully effective and maintain strict alignment with industry-leading compliance frameworks, specifically FedRAMP, DoD Impact Level 4 (IL4)
- Experience with organizing and driving network and system penetration tests to meet regulatory requirements, such as FedRAMP, StateRAMP, CMMC, DoD IL4