Security Engineer

Summary

Join Sisense's Information Security team as a hands-on Security Operations Engineer. You will be a frontline defender of our cloud infrastructure, leading incident management and response efforts while continuously improving our security posture. This role involves collaborating with engineering, IT, and cross-functional teams to implement and maintain robust security monitoring solutions. You will play a critical role in safeguarding our customers' most sensitive data by leading incident response, enhancing detection capabilities, managing security monitoring, driving threat hunting, automating SecOps workflows, improving cloud security monitoring, conducting investigations, and enhancing response protocols. The ideal candidate will have 3+ years of experience in security operations with a strong focus on incident detection and response in cloud environments. Sisense offers a remote work environment, stock options, unlimited vacations, extended medical insurance, and support for professional growth.

Requirements

• 3+ years of experience in security operations, with a strong focus on incident detection and response
• Demonstrated experience responding to and managing security incidents in cloud environments (AWS/Azure/GCP)
• Proficiency with SIEM and SOAR platforms, including rule creation, tuning, and maintenance
• Strong knowledge of cloud security monitoring tools and techniques
• Experience analyzing endpoint, network, and application logs for anomalous events
• Practical understanding of common attack vectors, TTPs, and how to detect them
• Knowledge of malware functionality and persistence mechanisms
• Experience with security automation and scripting for incident response workflows
• Growth mindset with a focus on continuous improvement of security operations

Responsibilities

• Lead Incident Response: Serve as primary responder to security alerts, perform initial triage, conduct thorough investigations, and coordinate remediation efforts
• Enhance Detection Capabilities: Design, implement, and fine-tune detection rules and alerts across our cloud environment to identify potential security threats
• Manage Security Monitoring: Maintain and optimize our SIEM/SOAR platforms to ensure comprehensive visibility into our security posture
• Drive Threat Hunting: Proactively search for indicators of compromise and potential security gaps within our cloud infrastructure
• Automate SecOps Workflows: Develop and implement automation to improve identification and response times for security events
• Improve Cloud Security Monitoring: Develop and run tools to gather security telemetry data from cloud production systems
• Conduct Investigations: Perform forensic analysis of security incidents, document findings, and communicate effectively to stakeholders
• Enhance Response Protocols: Continuously refine incident response procedures and runbooks to ensure swift and effective handling of security events

Preferred Qualifications

• Experience with cloud-native security tools and services
• Proficiency in scripting languages (eg: Python) for security automation
• Familiarity with threat intelligence platforms and their integration into detection systems
• Experience with EDR solutions and email security technologies
• Knowledge of IT security audit techniques and compliance frameworks
• Security certifications such as GCIH, GCIA, CISSP, or similar

Benefits

• We’re all working remotely now
• We hire only people we trust. All Sisensers join the company without a probation period
• We believe all Sisensers should be owners of our company’s success. We grant all employees stock options that start vesting on Day One
• We support a work-life balance philosophy and provide unlimited vacations (flexible time off) and additional long weekends to all Sisensers
• We support professional growth with access to the modern learning platform
• We care about each other. All team members have extended medical insurance
• We provide Sisensers with a sports reimbursement to support physical fitness and mental wellbeing