Job description
ISE is anticipating the future need for an Embedded Studio Content Security Engineer to assist with a major security project for a large media and entertainment client. You'll serve on a team of trusted advisors on vendor security, emerging media tech, and platform risk-working closely with the studio, third-party vendors, and internal teams.
The term "embedded" refers to the collaborative, integrated nature of the work, not embedded systems or IoT devices.
What you'll do at ISE:
• Assist with conducting vendor and platform security assessments using MPA Best Practices, ISO, and NIST standards
• Help with remediation efforts and track risk across hybrid and cloud environments (AWS, Azure, GCP)
• Aid in advising clients on secure workflows, content protection (DRM, watermarking), and emerging technologies (e.g., AI-integrated platforms)
• Communicate security risks clearly to business and technical stakeholders
• Participate in cloud/application security reviews throughout project lifecycles
• Maintain policies, standards, and compliance documentation
• Dedicate 50%-100% of time per week to one large client
Must Haves:
• 3+ years of experience in cybersecurity across application, infrastructure, and/or consulting domains
• 3+ years of experience in public cloud security (AWS, Azure, GCP), including VPCs, IAM, encryption, and network security controls
• Previous experience conducting risk assessments and communicating vulnerabilities, risk posture, and remediation strategies
• Reside in the Los Angeles, CA metro area with the willingness to work on site as often as requested by the client
Nice to haves:
• Experience with DRM systems, watermarking technologies, or AI-integrated media platforms
• Capability of doing hands-on application assessments for other clients
• Experience performing media and entertainment cloud assessments
• Certification(s) to complete media and entertainment industry cloud assessments, such as AWS, Azure, GCP Professional, BSI, CompTIA Cloud+, CSA, EC-Council, GIAC, ISC2, PECB, and CCZT
Salary:
$90K-$130K (according to experience)
If you don't think you meet all the criteria above but are still interested in the job, please apply. Nobody checks every box, and we're looking for someone excited to join the team.
What we bring to the table:
• Check out joinise.io for full details
• Work that matters; projects that impact people's everyday life and wellbeing
• Quality, integrity, dedication, and education: our core values
• Life balance: flexible schedule, work from home options, unlimited vacation
• $0 health premium plan option, including spouse and family
• Opportunities to research and publish, speak at major security events and conferences
• Leadership and peers that support and mentor you: your growth is our growth, your success is our success
• Relaxed and fun environment: ditch the suit and tie, sit or stand at your desk or find a sofa
How you'll learn at ISE:
Everyone has a mentor, or two or three sometimes. We hold you and ourselves accountable for your advancement. You'll learn directly from your mentor, your colleagues, resources vetted by the team, and at regular firetalk lunches by your peers - oh, and lunch is on us once a week in the office. You also have access to paid training, workshops, university courses, certification courses, and we'll pay for the certs too. Want to learn a new skill that you aren't currently using but want to? Great! Innovation is key-new technology is important.
About ISE:
ISE is an independent security consulting and software firm headquartered in Baltimore, Maryland, dedicated to securing high value assets for global enterprises and performing groundbreaking security research. Using an adversary-centric perspective driven by our elite team of analysts and developers, we improve our clients' overall security posture, protect digital assets, harden existing technologies, secure infrastructures, and work with development teams to ensure product security prior to deployment. Our team enjoys working in a creative, educational, and comfortable environment where they can thrive professionally.
Building a Better Community:
We value different viewpoints and fresh perspectives. We embrace people who challenge our thinking and question the status quo. We are opposed to narrow minded, exclusionary, and discriminatory viewpoints or practices that inherently undermine our creative process, hinder growth, and impede innovation.
Need more info?
Be sure you spend some time at www.ise.io. Make sure you look through all the perks on the Careers page, then check out our Research and Blog, our events page for the IoT Village, and About page. Follow us on Twitter @ISEsecurity and @IoTvillage
Requirements
• 3+ years of experience in cybersecurity across application, infrastructure, and/or consulting domains
• 3+ years of experience in public cloud security (AWS, Azure, GCP), including VPCs, IAM, encryption, and network security controls
• Previous experience conducting risk assessments and communicating vulnerabilities, risk posture, and remediation strategies
• Reside in the Los Angeles, CA metro area with the willingness to work on site as often as requested by the client
• Experience with DRM systems, watermarking technologies, or AI-integrated media platforms
• Capability of doing hands-on application assessments for other clients
• Experience performing media and entertainment cloud assessments
• Certification(s) to complete media and entertainment industry cloud assessments, such as AWS, Azure, GCP Professional, BSI, CompTIA Cloud+, CSA, EC-Council, GIAC, ISC2, PECB, and CCZT
• Everyone has a mentor, or two or three sometimes
