Security Engineer, Security Operations & Incident Response


Jan 17


Proven, hands-on technical experience in security operations, incident response, and threat intelligence functions at high-growth companies
History of increasingly technical roles responsible for responding to risk and threats as they are identified
Provide guidance for implementing rules and event correlation for company leveraged SIEM
Work with different business verticals within organization to create meaning alerts and detection measures
Develop detection rules to alert and identify malicious, suspicious and anomalous activity
Troubleshoot issues with log sources and SIEM environment, with multiple teams across the organization
Conduct reviews on SIEM and log sources individual performance and availability
Identify and recommend process improvements for maintaining and managing SIEM technology
Design and coordinate plans to enhance and upgrade SIEM environment
Develop complex threat detection logic and operational dashboards for each business vertical
Design and build reusable and reliable automations for SecOps
Knowledge of cryptocurrencies, financial services, or blockchain technology are a plus - if you don’t have this, don’t worry, we can teach you if you’re willing to learn

About You
Knowledge and experience of one programming language
Experience maintaining and managing a commercial and/or proprietary SIEM
Deep understanding of SecOps/SOC processes and workflows
Experience developing and maintaining security playbooks/runbooks
Experience with GROK and RegEx
Deep understanding of cloud infrastructure, implementation of security projects, and security engineering best practices as well as industry standards such as ISO and NIST
Demonstrated ability to continuously learn, work independently, and make decisions with minimal supervision
Ability to work effectively in teams of technical and non-technical individuals, including peers in non-technical departments
Have extreme attention to detail without sacrificing execution rigor
Bias towards action and own tasks end-to-end
Work through hurdles and tactfully navigate the organization driving towards the objective
Be a doer that can get things done and unblock tasks while building deep organizational relationships along the way
Be thoughtful and analytical - ask why and challenge preconceived notions
Ability to work independently with minimal supervision
Own the company’s problems like they are your own
Obsessive drive and passion for security and building products people use