Sr. Technical Security Engineer

Company Description

AOL is a media technology company with a mission to connect consumers and creators through open marketplaces. AOL uses data to disrupt content production, distribution and monetisation. We connect publishers with advertisers across our global, programmatic platforms, tapping into Microsoft inventory and original content brands like TechCrunch, The Huffington Post and MAKERS which reach over 500 million monthly global consumers. Within our mobile advertising network alone, we have a reach of roughly 800 million users. A subsidiary of Verizon, AOL is shaping the digital future.

Job Description

The Senior Technical Security Engineer position is within AOL's IT Security group whose mission is to

deliver information security solutions and services to protect AOL information assets, computing

infrastructure, applications and data. The Sr. Engineer will work within the compliance and vulnerability

management team helping to identify and mitigate risks against AOL.


The Sr. Engineer will perform technical security engineering activities including the following:

 Perform vulnerability scans, analysis, validation and remediation activities

 Perform network and application penetration testing

 Classify and prioritize the risk of new vulnerabilities according to the specifics of AOL

environment's risk level, mitigating factors, and assessment of the impacts of internal and

external threats

 Engineer application, system and network security solutions to meet security requirements for

varied operating environments

 Research and assess new threats, vulnerability security trends and security alerts, recommend

remedial action

 Work with customers to oversee remediation of identified security issues

 Perform technical and non-technical compliance activities

 Provide security subject matter expertise to AOL product teams including developers and

system administrators

 Perform security validation for configuration settings on different systems



 Bachelor’s degree with a minimum of 5 years of information security work experience

 A strong interest in the field of information security

 Strong Understanding of common network vulnerabilities, OS vulnerabilities (Linux, Windows

and OSX), patching and attack patterns

 Good written and verbal communication skills.

 Solid organizational skills and strong customer service skills

 Fluent in a variety of web application protocols, operating systems and networking technologies.

 Experience in system administration, software engineering, or related technologies.

 Experience with parsing / analysis of large data sets (e.g. vulnerability scan results).

 Strong analytical skills


 Certified Information Systems Security Professional (CISSP)

 Expertise with OWASP/NIST security concepts and common application security risks, such as

XSS, XSRF, SQL Injection, Cookie Manipulation among others.

 Familiarity with Enterprise Vulnerability Management tools such as Rapid 7 Nexpose, Nessus

and Qualys.

 Familiarity with Amazon Web Services security

Additional Information

AOL offers a competitive salary and benefits package, and performance bonus. All qualified applicants will receive consideration for employment without regard to, and will not be discriminated against based on, race, gender, color, religion, national origin, sexual orientation, gender identity, veteran status, disability or other protected category.

Meet Some of AOL's Employees

Jessica K.

Director, Millennial Outreach

Jessica works with millennials to learn what kind of media and news they’d like to see on The Huffington Post—and relays that information to the editorial staff.

Piya G.

Software Engineer, Huffington Post Media Group

Piya and her team works to design, build, and execute the international editions of The Huffington Post. She ensures that the site works well for all users around the world.

Back to top