Cybersecurity Engineer – Security Posture Management

　　Job Description

　　Overview

　　CoStar Group (NASDAQ: CSGP) is a leading global provider of commercial and residential real estate information, analytics, and online marketplaces. Included in the S&P 500 Index and the NASDAQ 100, CoStar Group is on a mission to digitize the world’s real estate, empowering all people to discover properties, insights and connections that improve their businesses and lives.

　　We have been living and breathing the world of real estate information and online marketplaces for over 35 years, giving us the perspective to create truly unique and valuable offerings to our customers. We’ve continually refined, transformed and perfected our approach to our business, creating a language that has become standard in our industry, for our customers, and even our competitors. We continue that effort today and are always working to improve and drive innovation. This is how we deliver for our customers, our employees, and investors. By equipping the brightest minds with the best resources available, we provide an invaluable edge in real estate.

　　We are seeking a skilled and experienced Cybersecurity Engineer with expertise in the review, deployment, and hardening of Software as a Service (SaaS) Applications. You will engage with all departments of CoStar Group helping drive and shape the way we manage the protection of our enterprise infrastructure. We’re looking for someone who can communicate and reinforce security concepts to technical and non-technical team members.

　　The ideal candidate will have deep experience in implementing and managing robust security measures to ensure the secure configuration and compliance of Software as a Service (SaaS) applications. The successful candidate will be intrinsically motivated to learn new technologies and tools to move security forward as it is implemented within the CoStar Enterprise.

　　This position is located in Washington, DC or Richmond, VA and offers a hybrid schedule of 3 days onsite, 2 days remote.

　　Responsibilities:

　　SaaS Security Configuration:

　　Assess, design, and implement security configurations for various SaaS applications to meet industry best practices and compliance requirements.

　　Collaborate with cross-functional teams to ensure secure integration and utilization of SaaS solutions.

　　Continuous Monitoring:

　　Implement and manage continuous monitoring solutions for SaaS applications to detect and respond to security incidents promptly.

　　Develop and maintain real-time visibility into the security posture of our SaaS environment.

　　Compliance Management:

　　Ensure that SaaS applications adhere to regulatory requirements and industry standards.

　　Conduct regular audits and assessments to validate compliance with security policies and regulations.

　　Identity and Access Management (IAM):

　　Implement and manage IAM controls for SaaS applications, ensuring secure and efficient access to authorized users.

　　Enforce the principle of least privilege and conduct regular reviews of access permissions.

　　Security Automation and Orchestration:

　　Develop and implement automation and orchestration processes to streamline security configurations and responses within the SaaS environment.

　　Identify opportunities for automation to improve efficiency and reduce security risks.

　　Incident Response and Forensics:

　　Collaborate with the incident response team to develop and execute response plans specific to SaaS-related security incidents.

　　Conduct forensic investigations to identify the root cause of security incidents within the SaaS environment.

　　Basic Qualifications

　　Bachelor’s Degree required from an accredited, not for profit university or college (preferably in Computer Science, Cybersecurity or a related field)

　　A track record of commitment to prior employers

　　5+ years total experience in engineering, including a minimum of 3 years in Security specific roles

　　Proven experience in implementing and managing SaaS posture management solutions.

　　Strong understanding of SaaS security principles, including configuration management and access controls.

　　Experience with SaaS application integration and deployment.

　　Knowledge of regulatory compliance requirements related to SaaS applications.

　　Familiarity with IAM principles and practices.

　　Excellent problem-solving and analytical skills.

　　Effective communication skills to collaborate with diverse teams and stakeholders.

　　Preferred Skills:

　　Relevant certifications such as Certified Cloud Security Professional (CCSP) or Certified Information Systems Security Professional (CISSP). Experience with leading SaaS platforms, such as Microsoft 365, Google Workspace, Salesforce, etc. Scripting and automation skills for SaaS security tasks.

　　What’s in it for You

　　When you join CoStar Group, you’ll experience a collaborative and innovative culture working alongside the best and brightest to empower our people and customers to succeed.

　　We offer you generous compensation and performance-based incentives. CoStar Group also invests in your professional and academic growth with internal training, tuition reimbursement, and an inter-office exchange program.

　　Our benefits package includes (but is not limited to):

　　Comprehensive healthcare coverage: Medical / Vision / Dental / Prescription Drug

　　Life, legal, and supplementary insurance

　　Virtual and in person mental health counseling services for individuals and family

　　Commuter and parking benefits

　　401(K) retirement plan with matching contributions

　　Employee stock purchase plan

　　Paid time off

　　Tuition reimbursement

　　On-site fitness center and/or reimbursed fitness center membership costs (location dependent), with yoga studio, Pelotons, personal training, group exercise classes

　　Access to CoStar Group’s Diversity, Equity, & Inclusion Employee Resource Groups

　　Complimentary gourmet coffee, tea, hot chocolate, fresh fruit, and other healthy snacks

　　We welcome all qualified candidates who are currently eligible to work full-time in the United States to apply. However, please note that CoStar Group is not able to provide visa sponsorship for this position.

　　#LI-Hybrid

　　#LI-CT5

　　CoStar Group is an Equal Employment Opportunity Employer; we maintain a drug-free workplace and perform pre-employment substance abuse testing

　　CoStar Group (NASDAQ: CSGP) is a leading global provider of commercial and residential real estate information, analytics, and online marketplaces. Included in the S&P 500 Index and the NASDAQ 100, CoStar Group is on a mission to digitize the world’s real estate, empowering all people to discover properties, insights and connections that improve their businesses and lives.

　　We have been living and breathing the world of real estate information and online marketplaces for over 37 years, giving us the perspective to create truly unique and valuable products and services. We’ve continually refined, transformed and perfected our approach to our business, creating a language that has become standard in our industry and for our customers. This is how we deliver for our customers, our employees, and investors. By equipping the brightest minds with the best resources available, we provide an invaluable edge in real estate.

　　CoStar is committed to creating a diverse environment and is proud to be an equal opportunity workplace and affirmative action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. CoStar is also committed to compliance with all fair employment practices regarding citizenship and immigration status.

　　If you are a qualified individual with a disability or a disabled veteran, you may request a reasonable accommodation if you are unable or limited in your ability to use or access www.costargroup.com/careers as a result of your disability. You can request reasonable accommodations by calling 1-855-840-1715 or by sending an email to [email protected] .