Staff Security Engineer

Summary

Join Foodsmart as a Staff Security Engineer - Security Operations and take ownership of the security operations function, ensuring the safety and resilience of our organization. You will monitor, detect, respond to, and mitigate security risks impacting Foodsmart’s systems, data, employees, and customers. This role requires a deep understanding of modern security operations practices and the ability to independently execute strategies to minimize risk. You will proactively identify risks, strengthen security operations, collaborate across teams, and ensure compliance with relevant frameworks. Foodsmart offers a competitive salary, equity, and benefits, including a remote-first work environment and unlimited PTO.

Requirements

• At least 8 years of experience in security operations or information security roles with a proven track record of safeguarding critical systems in fast-paced environments
• Expertise in managing SIEM platforms, SOAR tools, EDR/XDR solutions, and other advanced monitoring technologies
• Deep knowledge of modern attack techniques and incident response best practices
• Experience conducting threat hunting exercises across multi cloud environments, SaaS applications, and endpoints
• Strong scripting/coding skills in Python or similar languages for automating workflows within SecOps tools
• Familiarity with compliance frameworks such as SOC 2, HIPAA, HITRUST CSF, or CCPA as they apply to operational environments

Responsibilities

• Oversee real-time monitoring of security events across Foodsmart’s infrastructure using SIEM tools to detect and respond to suspicious activities
• Continuously improve threat detection capabilities by fine-tuning alerts, building correlation rules, and integrating new data sources into monitoring systems
• Act as the first line of defense during active incidents, lead containment, eradication, recovery efforts, and conduct root cause analysis
• Perform regular threat hunting exercises across Foodsmart’s environment to uncover hidden vulnerabilities or potential attack vectors
• Conduct periodic risk assessments on infrastructure, SaaS applications, endpoints, and third party integrations to identify gaps in security posture
• Implement vulnerability management processes to ensure timely remediation of identified risks
• Develop playbooks for common attack scenarios to ensure rapid response during incidents
• Automate repetitive tasks such as alert triage or remediation workflows using scripting languages like Python or tools like SOAR platforms
• Partner with DevOps teams to enhance CI/CD pipeline security and enforce secure configurations for infrastructure-as-code (IaC)
• Work closely with IT teams to secure endpoints for remote employees and enforce strong identity access management policies
• Serve as a trusted advisor to internal stakeholders by providing actionable recommendations on mitigating risks without disrupting business operations
• Mentor team members on best practices in security operations to foster a culture of vigilance across the organization
• Support compliance initiatives such as SOC 2, HIPAA, HITRUST CSF, and CCPA by maintaining audit-ready documentation of security controls
• Monitor adherence to regulatory requirements while continuously improving processes to meet industry standards

Preferred Qualifications

• GIAC Certified Incident Handler (GCIH)
• Certified Information Systems Security Professional (CISSP)

Benefits

• Remote-First Company
• Unlimited PTO
• Flexible & remote location
• Healthcare Coverage (Medical, Dental, Vision)
• 401k, bonus, & stock options
• Registered Dietitian Sessions
• Wellness reimbursement