Security Operations Manager

Summary

Join UJET's Security Operations team as a full-time remote Security Engineer, reporting to the VP of Security and Compliance. You will play a key role in building and maintaining our secure cloud infrastructure. Responsibilities include developing threat detection programs, leading incident response, and collaborating with other teams to ensure robust security. This position requires extensive experience in DevSecOps, cloud technologies (AWS, GCP, etc.), and security domains (SIEM, firewalls, etc.). UJET offers a competitive compensation and benefits package, including unlimited vacation and stock options, in addition to a supportive and inclusive work environment.

Requirements

• 4+ years of relevant DevSecOps experience using cloud technologies such as AWS, GCP, containers (Docker, Kubernetes), and CI/CD pipelines
• A range of knowledge and experience across information security domains, including SIEM, firewalls, IDS/IPS, IAM, vulnerability management, incident response, and threat detection
• Hands-on configuration and management of cloud security management and compliance tools (ThreatStack, Lacework, GuardDuty, etc)
• Proficiency with a programming or scripting language, such as Python, Terraform, CloudFormation, etc
• Knowledge of common secure coding principles and application security vulnerabilities found in Cloud hosted SaaS services
• Solid communication skills - both written and verbal

Responsibilities

• Own and operate the threat detection program
• Build security monitoring and incident response capabilities to improve our ability to detect and respond to dynamic security threats
• Monitor, research, validate, and respond to relevant alerts and events from security tooling
• Lead incident response activities, driving remediation and resolution of security events or risks
• Apply knowledge of forensic analysis techniques, eDiscovery  and chain of custody
• Administer SIEM tool and related software
• Support application security reviews and threat modeling, including code review and dynamic testing
• Support compliance audits and facilitate continuous monitoring activities
• Identify and operationalize opportunities to redesign and improve controls for audit readiness
• Act as security subject matter expert when advising engineering, operations, and other organizations throughout the company
• Automate all the things
• Manage and coach team members

Benefits

• Competitive compensation and benefits package
• Work/life balance
• Unlimited vacation
• Stock options
• Monthly game nights