Senior Security Engineer

Summary

Join Octane®, a revolutionary company in recreational purchases, as a Senior Security Engineer specializing in Threat and Vulnerability. You will be responsible for designing, implementing, and maintaining a Security Operations Center (SOC) and Incident Response program. This role involves developing and integrating security technologies, designing alerts and dashboards, collaborating with cross-functional teams, and mentoring junior engineers. The ideal candidate possesses at least seven years of experience in security operations, strong scripting and integration skills, and familiarity with various security tools. The position offers a hybrid or remote work option and a competitive salary and benefits package.

Requirements

• 7+ years of experience in Security Operations, Incident Response, or a related field
• 4+ years of experience designing, building, and running secure, fault-tolerant systems in cloud or virtualized environments
• Advanced knowledge of security technologies such as SIEM, SOAR, EDR, firewalls, and Threat Intelligence platforms
• Experience with scripting languages such as Python, PowerShell, or Bash
• Experience integrating tools using REST API connections
• Collaborated with distributed engineering teams and experience with cross-functional collaboration
• Background in security architecture and design, including experience with cloud security and infrastructure security
• Experience with security operations tools such as Datadog, Splunk, ELK
• Previously utilized infrastructure as code tools such as Terraform or Cloudformation/CDK
• Experience designing and leading the incident response process for security incidents

Responsibilities

• Design, implement, and maintain a comprehensive Security Operations Center (SOC) and Incident Response program to improve the security posture of the company
• Develop, integrate, and automate security technologies such as SIEM, SOAR, and Threat Intelligence platforms to enhance security signal sources and incident response capabilities
• Develop and maintain integrations with security tools such as IdP, SASE, and EDR. Aggregate security signals such as end-user and production environment logs
• Design and implement alerts, metrics, runbooks, and dashboards to track security posture and incident response efforts
• Develop and maintain relationships with key stakeholders across the engineering department to ensure effective collaboration and communication
• Mentor and coach junior engineers on the team and across the engineering organization on SOC and Incident Response best practices
• Respond to security incidents and injection requests in a timely and efficient manner, and support the team's after-hours on-call schedule
• Collaborate with Engineering, IT, and other teams to investigate potential security issues, review logs for evidence of compromise, and lead security-related tasks
• Design and implement security architectures and solutions to protect infrastructure and workload environments
• Stay up-to-date with evolving security threats and technologies, and apply that knowledge to improve the company's security posture

Preferred Qualifications

• Relevant certifications such as CEH, SANS, CISM, CISSP are a plus
• Relevant security-focused degrees and certifications are preferred

Benefits

• Robust Health Care Plans (Medical, Dental & Vision)
• Generous Parental Leave
• Flexible Time Off (FTO)
• Retirement Plan (401k) with company match!
• Educational Assistance/Tuition Reimbursement up to $3K/year
• Life Insurance (Basic, Voluntary & AD&D)
• Short Term / Long Term Disability
• Robust Ancillary benefits including accident insurance, hospital insurance, etc
• Wellhub (Gympass) Wellness Benefit
• Powersports Safety Benefit