WHO WE ARE

One third of the world’s food goes to waste. Which means all the water, energy, and greenhouse gases used to produce that food is wasted with it. This is a problem with a $990 billion price tag for the food industry and an even bigger one for the planet. But we believe the solution is simple.

What if we could eliminate waste by better balancing the supply and demand of food?

Zume uses predictive analytics and real-time food consumption data to predict customer demand, match it with production, and enable food companies to make smarter decisions across the food supply chain.

By connecting all the pieces of the food supply chain, we enable our partners to make better decisions for their business, their customers, and the planet we all call home.

We’re tackling some of the world’s biggest problems, and we need your help to solve them. If you want to take on something different in your career, we’d love to meet you.

WHAT YOU'LL DO

This is role that has a strong bias for action - only self-starters and drivers need apply. This role will focus on implementing monitoring and reporting systems, incident response protocols, security design reviews, and providing guidance to engineering and project teams on the implementation of security controls in Zume’s operating environments. You will have a passion for performance, a balanced view of cost versus benefit, and above all else have a driving desire to keep Zume secure while maintaining the very highest standards in customer service. The right candidate will identify and scale out the team as the need arises, while leveraging vendors and internal partners in the interim. This role will have a strong emphasis on Incident Response (IR), and will be tasked to optimize and scale out a security event collection, aggregation and analysis capabilities. We’re seeking someone with security and service engineering expertise and passion to help us build best-in-class incident response capabilities inside of Zume. This role will grow to be a management position.  

Specific work includes:

  • Specify new security controls needed to reduce risks identified from security reviews and threat modelling exercises or from security incidents and specify these new controls as requirements to be added the organization’s SDL process.
  • Tailor and tune data collection for cloud-based assets, from the operating system plane to the application and service planes
  • Conduct and coordinate security monitoring agent deployments and upgrades in conjunction with the customer change management policies and procedures with due diligence
  • Engineer, implement, improve, and operate healthy state of data collection, monitoring, and alerting systems
  • Evaluate security risks, threat intelligence, and develop strategies and tactics to defend against evolving threat patterns
  • Create technical documentation such as case records, troubleshoot guides, standard operational procedures (SOPs), technical support guides (TSGs), and prep frequently asked questions.

EXPERIENCE & SKILLS

  • Experience as an incident response security analyst at triaging, investigating, correlating, tagging severity and assigning IT tickets to service engineers.
  • Experience using common security operations technologies including Vulnerability Scanners, Intrusion Detection Systems (IDS), Security Incident Event Management systems (SIEM), anti-virus log collection systems, etc.
  • Experience performing forensics analysis on Cloud infrastructure platforms
  • Excellent interpersonal and group dynamic skills, an inclusive person with a passion to help others succeed.
  • Bachelor's degree in Computer Science, Engineering, Technical Science or equivalent years of work experience
  • 10+ years experience driving the implementation, configuration, customization of enterprise security controls; 5+ years for cloud controls in one of the major providers; Demonstrable, hands on experience with GCP and accompanying controls
  • Demonstrated technical management skills

PREFERRED SKILLS: 

  • Experience with security monitoring with GCP
  • Regulatory experience with ISO 27001 series, Sarbanes Oxley, and Payment Card Industry control implementation
  • Previous role as Security Engineering Manager

MINIMUM EDUCATION REQUIREMENT FOR THE POSITION OFFERED

  • Bachelor’s Degree or master's degree (Masters degree highly preferred) in Computer Science/Engineering or equivalent

TRAVEL REQUIREMENTS

  • Willing to travel 25%

WHAT WE OFFER 

  • 100% company-paid Medical, Dental, and Vision and 75% for you and your dependents
  • Flexible Time Off
  • Daily catered lunch
  • Free and discounted pizza!
  • The opportunity to work with an incredibly supportive team of thinkers and innovators

 

Zume provides equal employment opportunity to all individuals regardless of their race, color, creed, religion, gender, age, sexual orientation, national origin, disability, veteran status, or any other characteristic protected by state, federal, or local law.  Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.

Apply for this Job

* Required

  
  


U.S. Equal Opportunity Employment Information (Completion is voluntary)

Individuals seeking employment at Zume Inc. are considered without regards to race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, gender identity, or sexual orientation. You are being given the opportunity to provide the following information in order to help us comply with federal and state Equal Employment Opportunity/Affirmative Action record keeping, reporting, and other legal requirements.

Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiring process or thereafter. Any information that you do provide will be recorded and maintained in a confidential file.

Race & Ethnicity Definitions

If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection. As a government contractor subject to Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measure the effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categories is as follows:

A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability.

A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.

An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.

An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.


Form CC-305

OMB Control Number 1250-0005

Expires 1/31/2020

Voluntary Self-Identification of Disability

Why are you being asked to complete this form?

Because we do business with the government, we must reach out to, hire, and provide equal opportunity to qualified people with disabilities1. To help us measure how well we are doing, we are asking you to tell us if you have a disability or if you ever had a disability. Completing this form is voluntary, but we hope that you will choose to fill it out. If you are applying for a job, any answer you give will be kept private and will not be used against you in any way.

If you already work for us, your answer will not be used against you in any way. Because a person may become disabled at any time, we are required to ask all of our employees to update their information every five years. You may voluntarily self-identify as having a disability on this form without fear of any punishment because you did not identify as having a disability earlier.

How do I know if I have a disability?

You are considered to have a disability if you have a physical or mental impairment or medical condition that substantially limits a major life activity, or if you have a history or record of such an impairment or medical condition.

Disabilities include, but are not limited to:

  • Blindness
  • Deafness
  • Cancer
  • Diabetes
  • Epilepsy
  • Autism
  • Cerebral palsy
  • HIV/AIDS
  • Schizophrenia
  • Muscular dystrophy
  • Bipolar disorder
  • Major depression
  • Multiple sclerosis (MS)
  • Missing limbs or partially missing limbs
  • Post-traumatic stress disorder (PTSD)
  • Obsessive compulsive disorder
  • Impairments requiring the use of a wheelchair
  • Intellectual disability (previously called mental retardation)
Reasonable Accommodation Notice

Federal law requires employers to provide reasonable accommodation to qualified individuals with disabilities. Please tell us if you require a reasonable accommodation to apply for a job or to perform your job. Examples of reasonable accommodation include making a change to the application process or work procedures, providing documents in an alternate format, using a sign language interpreter, or using specialized equipment.

1Section 503 of the Rehabilitation Act of 1973, as amended. For more information about this form or the equal employment obligations of Federal contractors, visit the U.S. Department of Labor's Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.