AXS connects fans with the artists and teams they love. Each year we sell millions of tickets to thousands of incredible events – from concerts and festivals to sports and theater – at some of the most iconic venues in the world. Since our founding in 2011, we’ve consistently pushed the industry forward and improved experiences for fans, making it easier than ever to discover events, find the perfect seats, and enjoy unforgettable live entertainment, and we continue to lead the evolution of our industry today.

We’re passionate about improving the fan experience and providing game-changing solutions for our clients, and we’re always looking for smart, motivated people to help make it happen. Bring your enthusiasm, your big ideas, and your desire to team up with some of the best and brightest in technology and entertainment.  

The Role

We are looking for our next Security Engineer II to be responsible for designing, implementing, and maintaining technical security measures, focusing on vulnerability management, threat detection, and infrastructure protection. This role will secure cloud/on-prem environments using automation (Python, Terraform) and tools like SIEM or EDR, often collaborating with DevOps to remediate security risks and strengthen security posture

What Will You Do?

• Develop and maintain security policies, guidelines, and lead implementation in all systems, including AWS and in particular CloudTrail, EKS, AWS Inspector, EC2, EMR, S3, AWS Identity Center, RDS, Security Hub, Guard Duty
• Architect, design, implement, support, and evaluate security-focused tools and controls to meet security and compliance needs.
• Integrate security checks into the CI/CD pipelines to ensure continuous compliance and shift left security practice.
• Utilize tools like Terraform or Cloud Formation to build, deploy and enforce compliance and secure cloud infrastructure.
• Utilize networking (VPC, Firewall, Transit Gateways), container security and encryption.
• Builds scripts (phyton, bash) and serverless functions (AWS Lambda) for alerting on anomalies, misconfigurations and threats include automations to auto respond to such threat actors/findings.
• Oversee threat management and security incident handling, including the coordination of investigations and reporting of security incidents to management, in alignment with business.
• Work with the team and QSA on PCI (level 1 & level 2 service provider) & SOC initiatives for the company.
• Ensure that security is factored into the evaluation, selection, and configuration of hardware, applications and software.
• Ensure audit trails, systems logs and other monitoring data sources are reviewed periodically and are in compliance with policies and audit requirements. Provide support and guidance for legal and regulatory compliance efforts, including audit support.
• Promote information security awareness throughout the company. Stay current with security technologies and threats by monitoring vendor and industry publications and attending training.
• Secure sensitive data, manage user credentials through principal of least privileges, track user activity.
• Proactively identify security risks and implement practices that meet standards for information security, by analyzing current systems, and working with IT and the business. Partner with development and infrastructure teams to identify and remediate vulnerabilities Develop mitigation plans.

What Will You Bring?

• BA/BS in computer science or related technical field
• 3-5 years of cybersecurity experience in a professional environment
• Experience with IDS/IPS, file integrity, internal/external penetration & vulnerability tests, FIM, SEIM, Log aggregation tools required
• Development and scripting experience to build automation: Lambda, Terraform, Cloud Formation, API integrations
• Understanding of the software development life cycle and CI/CD pipelines
• Ability to execute process and standards around code quality and the deployment lifecycle including SAST and DAST.
• Experience in SIEM, MDR, EDR, DLP Identity Management, WAF, WAS, Incident Response, attack surface management
• Proactively find weaknesses in applications and network through audits, penetration tests and security assessments
• Prepare reports on security metrics, attempted attacks, document findings and actions taken.
• Proven record of learning new languages, skills and technologies quickly, with minimal guidance
• Takes initiative, stays focused, always accountable.
• Thrives in a fast-paced environment with the ability to focus on achieving the target while minding longer term goals along the way
• Excellent communication skills

Pay Scale: $95,000-$111,000

Bonus: This position is eligible for a bonus under the current bonus plan requirements.

Benefits: Full-time: We offer a comprehensive benefits package that includes: medical, dental and vision insurance, paid holidays, vacation and sick time, company paid basic life insurance, voluntary life insurance, parental leave, 401k Plan (with a current employer match of 3%), flexible spending and health savings account options, and wellness offerings. Currently, full time employees are eligible for these benefits on the first day of employment.

*Employer does not offer work visa sponsorship for this position.

What’s in it for You?

• Extraordinary People – we’re not kidding!
• Meaningful Mission– Helping revolutionize an industry and deliver better experiences for fans and clients around the world.
• Development and Learning – Opportunities for learning and leveling up through training and education reimbursement.
• Community & Belonging – A range of Employee Resource Groups (ERGs) that foster connection, inclusion, and professional growth. Access to meaningful volunteer opportunities and community engagement programs to make a positive impact beyond the workplace.

More about AXS

AXS, a subsidiary of AEG, sells millions of tickets each year for 1600+ premier venues, sports teams, and event organizers across North America, Europe, Asia, Australia and New Zealand. Headquartered in Downtown Los Angeles, California, AXS employs more than 900 professionals in multiple locations worldwide. In each location you’ll find a team of dedicated, diverse employees (we’ve dubbed ourselves “Fanatix”) who create groundbreaking products and services in a fun, fast-paced environment. 

More about AEG

For more than 20 years, AEG has played a pivotal role in transforming sports and live entertainment. Annually, we host more than 160 million guests, promote more than 10,000 shows and present more than 22,000 events around the world. We are committed to innovation, artistry, and community, and leverage the power of our 300+ venues, leading sports franchises, marquee music brands, integrated entertainment districts, premier ticketing platform and global sponsorship activations, to create memorable moments that give the world reason to cheer.

Our business is interwoven with the human mind and heart, and we strive to build a diverse and inclusive company that reflects the artists, athletes, and fans that we host; reach beyond traditional boundaries to support the communities in which we operate; and minimize our impact on the environment by adopting sustainable practices throughout our business operations.

We are dedicated to a diverse, inclusive and authentic workplace, so if you’re excited about this role but can't "check every box" in the job description, we encourage you to apply anyway. You may be the right candidate for this or other roles.

AEG reserves the right to change or modify the employee’s job description whether orally or in writing, at any time during the employment relationship.  AEG may require an employee to perform duties outside their normal description.

AEG's policy is to hire the most qualified applicants, and we comply with all applicable federal, state and local employment laws in making hiring and employee decisions.  We are an equal opportunity employer and do not discriminate against applicants or employees on the basis of race, color, marital status, disability, religion, age, sex, sexual orientation, national origin, genetic information, veteran status, or any other legally protected status recognized by applicable federal, state or local law.

 #LI-Hybrid