Security Operations Engineer

Summary

The job is for a Security Operations Engineer/Incident Responder at Scout Motors, responsible for monitoring and responding to security incidents, developing incident response plans, and collaborating with cross-functional teams. The role requires a Bachelor's degree in Computer Science or related field, 5+ years of experience, knowledge of security monitoring tools, incident response frameworks, networking protocols, and common security vulnerabilities.

Requirements

• Bachelor's degree in Computer Science, Information Security, or a related field
• 5+ years of proven experience working as a Security Operations Engineer, Incident Responder, or in a similar role
• Strong knowledge of security monitoring tools, SIEM systems, IDS/IPS, antivirus, and other security technologies
• Familiarity with incident response frameworks, such as NIST SP 800-61 or the SANS Incident Handler's Handbook
• Knowledge of networking protocols, operating systems, and common security vulnerabilities and attack vectors
• Understanding of security incident lifecycle, including incident classification, escalation, containment, eradication, and recovery
• Proficiency in scripting or programming languages (e.g., Python, PowerShell) to automate incident handling processes

Responsibilities

• Monitor security alerts generated by various security systems
• Perform initial triage of security alerts to determine their severity, impact, and validity
• Investigate and analyze security incidents to understand the root cause, scope, and potential impact
• Coordinate with incident response teams and other relevant stakeholders to contain, mitigate, and remediate security incidents in a timely manner
• Document incident details, including the timeline of events, actions taken, and lessons learned for future reference and improvement
• Develop and maintain incident response plans, playbooks, and standard operating procedures to ensure consistent and effective incident handling
• Collaborate with cross-functional teams to identify and implement proactive measures to enhance the organization's security posture and prevent future incidents
• Conduct post-incident analysis to identify underlying vulnerabilities and recommend improvements to prevent similar incidents in the future
• Stay up to date with the latest security threats, attack vectors, and industry best practices to continuously improve incident detection and response capabilities
• Participate in regular security assessments, vulnerability scanning, and penetration testing to identify and address potential weaknesses in the security infrastructure
• Provide guidance and support to other teams, such as IT support and development, regarding security-related incidents and vulnerabilities

Preferred Qualifications

Professional certifications such as CISSP, GCIH, GCIA, or other relevant certifications are preferred

Benefits

• Competitive insurance including medical, dental, vision and income protection plans
• 401(k) program with an employer match and immediate vesting
• Generous Paid Time Off including 20 days planned PTO, as accrued, 40 hours of unplanned PTO, and 14 company or floating holidays, annually
• Up to 16 weeks of paid parental leave for biological and adoptive parents of all genders
• Paid leave for circumstances related to bereavement, jury duty, voting time, or military leave