Senior Security Analyst

Summary

Join Smartsheet as a Detection Engineer and contribute to building secure solutions that enhance the company's security posture. You will be responsible for developing and implementing security automation to streamline detection, investigation, and response workflows, reducing manual effort and improving operational efficiency. This role involves leveraging SOAR and scripting technologies to automate security tasks, designing and optimizing security automation playbooks, and continuously evaluating and improving security tooling integrations. You will also serve as a technical lead for specific areas of computer security incident response activities, lead the evaluation of vendor proposals and emerging security technologies, and mentor less experienced staff. This position requires a strong understanding of cyber security operations, incident response processes, and telemetry engineering, as well as expertise in log aggregation, correlation, and alerting using commercial and open-source tools.

Requirements

• Bachelor’s or Master’s degree in engineering, computer science, information security, information systems or a related field
• 6+ years of total experience in the field of cyber security
• 2+ years of experience with building automated workflows
• 3+ on detection engineering, penetration testing, security infrastructure tuning / deployment
• Experience in evaluating threat intelligence feeds to consume it for improving security posture by detecting threat actors and compromises within Smartsheet environments
• Strong expertise in building scalable detection and response program
• Ability to handle multiple competing priorities in a fast-paced environment
• SaaS and Cloud experience
• Relevant certifications such as CISSP, SANS GCIH, SANS GXPN, SANS GIAC, SANS GREM etc
• Solid understanding of events, related fields in log records and alerts reported by various data sources such as Mac/Windows/Unix systems, IDS/IPS, AV, HIDS/HIPS, WAFs, EDR, firewalls, and web proxies
• Excellent understanding of Cyber Security Operations, Incident Response processes and telemetry engineering
• Expertise in Log aggregation, Correlation and alerting using commercial and Open Source tools
• Experience with SIEM solutions like Splunk, Sumologic, ELK, Securonix
• Expert Python Scripting, Perl, Shell scripting and SecDevOps/automation and or orchestration

Responsibilities

• Develop and implement security automation to streamline detection, investigation, and response workflows, reducing manual effort and improving operational efficiency
• Leverage SOAR and scripting technologies (e.g., Python, PowerShell, APIs) to automate repetitive security tasks, including alert triage, threat intelligence enrichment, and remediation actions
• Design and optimize security automation playbooks to enhance incident response capabilities, ensuring rapid containment and mitigation of threats
• Continuously evaluate and improve security tooling integrations, automating log analysis, anomaly detection, and policy enforcement across cloud and on-prem environments
• Implement effective detection and response program by utilizing industry standard NIST / MITRE attack frameworks
• Serve as technical lead responsible for specific areas of computer security incident response activities to include intrusion detection monitoring, scanning, cyber threat reporting, and development/implementation of vulnerability mitigation strategies
• Lead the evaluation of vendor proposals, new and existing security designs, and emerging security technologies and systems
• Serve as a mentor to less experienced staff
• Be passionate in the pursuit of securing Smartsheet’s data and critical assets
• Work with a team of security professionals responsible for planning, design, detect, implementation, attack mitigation and ongoing support of security systems of high complexity to fulfill the business needs
• Collaborate with other teams to manage endpoint protections effectively and efficiently. In doing so, work closely with the research team, undertake research of threat vectors and provide mitigation strategies
• Provide recommendations to the management team to increase effectiveness of organization and technology solutions
• Support security audits to ensure compliance with corporate security policies and adherence to best practices
• Represent Smartsheet at information security and cyber security communities globally

Preferred Qualifications

OSCP (Offensive Security Certified Professional) is a Plus

Benefits

• HSA, 100% employer-paid premiums, or Buy-up medical/vision and dental coverage options for full-time employees
• 401k Match to help you save for your future (50% of your contribution up to the first 6% of your eligible pay)
• Monthly stipend to support your work and productivity
• Flexible Time Away Program, plus Sick Time Off
• US employees are automatically covered under Smartsheet-sponsored life insurance, short-term, and long-term disability plans
• US employees receive 12 paid holidays per year
• Up to 24 weeks of Parental Leave
• Personal paid Volunteer Day to support our community
• Opportunities for professional growth and development including access to Udemy online courses
• Company Funded Perks, including a counseling membership, local retail discounts, and your own personal Smartsheet account
• Teleworking options from any registered location in the U.S. (role specific)