Information Security Engineer III

SurveyMonkey is the world’s most popular platform for surveys and forms, built for business—loved by users. We combine powerful capabilities with intuitive design, effectively serving every use case, from customer experience to employee engagement, market research to payment and registration forms. With built-in research expertise and AI-powered technology, it’s like having a team of expert researchers at your fingertips.

Trusted by millions—from startups to Fortune 500 companies—SurveyMonkey helps teams gather insights and information that inspire better decisions, create experiences people love, and drive business growth. Discover how at surveymonkey.com.

What we’re looking for

The Information Security Engineer III reports to the Sr. Information Security lead and is primarily focused on security. The position joins a dynamic team responsible for safeguarding our cloud infrastructure, endpoints, network, and data. We’re hiring to expand our capacity and capabilities in key areas such as cloud security posture management, vulnerability remediation, endpoint detection and response (EDR), incident response, and network security technologies like Zscaler. This is an exciting opportunity to make a real impact, working with cutting-edge security tools and collaborating across teams to protect a compliance-driven, cloud-first environment.

What you’ll be working on

• Drive vulnerability management efforts by identifying and coordinating remediation of security findings across cloud and endpoint environments.
• Manage and optimize Cloud Security Posture Management (CSPM) tools such as AWS Security Hub, GuardDuty, and Inspector, leveraging automation to accelerate compliance checks and configuration drift detection.
• Maintain and enhance Endpoint Detection and Response (EDR) capabilities, including hosting group management, tuning policies and supporting investigations with tools like CrowdStrike, while automating visibility, alert enrichment, and response actions.
• Support secure access and traffic inspection using Zscaler by maintaining or defining policies, troubleshooting application flows
• Improve data protection and operational efficiency through automation.
• Participate in an on-call rotation for Incident Response, providing timely support and resolution for security events outside of regular business hours.

We’d love to hear from people with

• 5+ years of hands-on experience in information security, with a focus on cloud security, vulnerability management, endpoint and network protection, and data protection in enterprise environments.
• Experience working with security tools such as AWS Security Hub, GuardDuty, Inspector, CrowdStrike, and Zscaler.
• Proficiency in scripting or automation frameworks (Python, etc.) to streamline security operations and reporting.
• Security certifications such as CISSP, GSE C, or AWS Security Specialty are a strong plus.
• Strong collaboration, communication, and stakeholder engagement skills, with the ability to work cross-functionally with engineering, IT, and compliance teams.

SurveyMonkey believes in-person collaboration is valuable for building relationships, fostering community, and enhancing our speed and execution in problem-solving and decision-making. As such, you will be required to work from a SurveyMonkey office up to 1 day per week.

#LI - Hybrid

Why SurveyMonkey? We’re glad you asked 

SurveyMonkey is a place where the curious come to grow.  We’re building an inclusive workplace where people of every background can excel no matter their time zone. At SurveyMonkey, we weave employee feedback and our core values into everything we do to create forward-looking benefits policies, employee programs, and an award-winning culture, including our annual holiday refresh, our annual week of service, learning and development opportunities like Curiosity Week, and our C.H.O.I.C.E Fund. 

Our commitment to an inclusive workplace

SurveyMonkey is an equal opportunity employer committed to providing a workplace free from harassment and discrimination. We celebrate the unique differences of our employees because that is what drives curiosity, innovation, and the success of our business. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, gender identity or expression, age, marital status, veteran status, disability status, pregnancy, parental status, genetic information, political affiliation, or any other status protected by the laws or regulations in the locations where we operate. Accommodations are available for applicants with disabilities.