Security Engineer

Summary

ButterflyMX is seeking a seasoned temporary/contract Security Engineer with expertise in Elastic Defend and Elastic SIEM deployments and management for a 4-month position. The role involves incident management response, threat and vulnerability management, application security, AWS security, collaboration, documentation, and requires at least 5 years of experience in a security engineering role.

Requirements

• Minimum of 5 years of experience in a security engineering role
• Proven experience with Elastic Defend and Elastic SIEM deployments and management
• Proficiency with deploying, operationalizing & managing security solutions in a remote first organization, with a cloud tech stack built for providing SaaS
• AWS Security SME - experiential knowledge of securing EC2, S3, Lambda, EKS
• AWS Security Stack Experience - WAF, Inspector, Security Hub, GuardDuty, etc
• Security Overlay Solutions: EDR, SIEM, CNAPP/CSPM, DSPM, DLP, IDS/IPS
• Google Workspace, Apple, Windows, MDM, Secure Email Gateway
• Incident Response: Strong expertise in incident management and response
• Threat Management: In-depth knowledge of threat and vulnerability management practices
• Application Security: Experience in conducting application security assessments and implementing security controls

Responsibilities

• Deploy, configure, and manage Elastic Defend and Elastic SIEM solutions to monitor and protect our infrastructure
• Lead and coordinate incident response efforts, including detection, analysis, containment, eradication, and recovery. Develop playbooks and runbooks
• Manage vulnerability remediation efforts, ensuring adherence to SLAs
• Implement and manage security best practices in our AWS environment, including IAM, WAF, security groups, VPC configurations, Security Stack configuration, and monitoring
• Perform security assessments of applications, identify security flaws, and recommend corrective actions. Train Developers and other engineering team members on application security
• Work closely with cross-functional teams to ensure security measures are integrated into all aspects of the development and deployment processes
• Maintain detailed documentation of security incidents, configurations, and procedures

Preferred Qualifications

• Demonstrated ability to educate an engineering audience about technical application security vulnerabilities, i.e., OWASP Top Ten, OWASP API Security Top 1
• Relevant certifications such as Terraform Certified, AWS Certified Security – Specialty, or similar are a plus

Benefits

• 401(k) match
• Quarterly stipends for self-care