Senior SOC Security Engineer

Summary

Join Calendly's Security team and make a difference through innovation as a Senior Security Engineer. You will report to the Head of Security Operations and be responsible for key security operations functions, including incident response, enterprise-level security, and threat detection enhancements. Collaborate with the SOC team to monitor, detect, and respond to cybersecurity threats. Develop and implement incident response plans, integrate security tools, and leverage JIRA for reporting. Conduct security assessments and threat hunts, collaborate with other departments, and mentor junior team members. Prepare regular reports for senior management and lead SOC operations, enhancing threat detection capabilities through tool integration and tuning. This role requires a minimum of 5 years of cybersecurity experience, including 4 years in security operations and enterprise security.

Requirements

• A minimum of 5 years of experience in cybersecurity, with at least 4 years dedicated to security operations, a SOC environment and enterprise security
• Demonstrated experience in incident response and management, including developing and implementing incident response plans and conducting post-incident analysis
• Experience with JIRA or similar tools for creating dashboards, managing reports, and automating workflows to support cybersecurity operations
• Proven track record in threat detection, analysis, and resolution, including the use of forensic tools for in-depth investigations
• Expert knowledge in operating and configuring SIEM tools (e.g., Splunk, ELK) for real-time threat monitoring and analysis
• Deep understanding of security technologies such as EDR (Endpoint Detection and Response), firewalls, and vulnerability scanners
• Proficient in scripting languages (e.g., Python) and SOAR solutions to automate SOC processes, enhance threat detection, and streamline incident response
• Authorized to work lawfully in the United States of America as Calendly does not engage in immigration sponsorship at this time

Responsibilities

• Collaborating with Security Operations Center (SOC) team members to monitor, detect, and respond to cybersecurity threats in a timely manner
• Developing and implementing comprehensive incident response plans; managing and coordinating cybersecurity incidents from identification through resolution
• Integrating various security and IT tools to enhance threat detection, incident response, and operational efficiency
• Leveraging JIRA for creating and managing dashboards, reports, and metrics that support cybersecurity operations and decision-making
• Conducting regular security assessments, threat hunts, and continuous monitoring to identify vulnerabilities, opportunities for posture enhancements and better incident preparedness
• Collaborating with Engineering, IT and other departments to ensure cybersecurity best practices are integrated across the organization
• Developing and maintaining up-to-date knowledge of the threat landscape, as well as advancements in cybersecurity technologies and methodologies
• Mentoring and providing guidance to junior team members, fostering a culture of continuous learning and improvement
• Preparing and presenting regular reports on incident trends, security posture, and the effectiveness of implemented security measures to senior management
• Leading and optimizing the operations of our Security Operations Center (SOC), ensuring effective threat detection, analysis, and response activities
• Developing, implementing, and overseeing incident response protocols and procedures to swiftly and effectively manage security incidents
• Enhancing threat detection capabilities through the integration and tuning of security tools and technologies, including SIEM, EDR, firewalls, and intrusion detection systems

Benefits

• Quarterly Corporate Bonus program (or Sales incentive)
• Equity awards
• Competitive benefits