Staff Security Engineer

Summary

Join Tines, a leading workflow automation platform, as a Staff Security Engineer! This key role, reporting to the Head of IT Operations & Information Security, can be based remotely in the United States. You will drive security projects, ensuring the protection of our customers, brand, and employees. This position requires extensive experience in security and automation, a deep understanding of cloud security, and the ability to work both independently and collaboratively. You will be responsible for scaling detection and response capabilities, reviewing security reports, and mentoring junior engineers. The ideal candidate will be passionate about security and automation, and eager to contribute to a growing security program.

Requirements

• 12+ years experience in a security role on a high demand security team
• Excellent written and verbal English skills
• Deep familiarity with cloud security fundamentals, including deploying & managing services with infrastructure as code with tools like Terraform, Packer, Cloudformation, Ansible, SaltStack, Chef, etc
• Familiarity with securing container technologies like Docker or Kubernetes
• Background of automating security tasks with SOAR tools and/or languages like Python/Go
• Knowledge of command-line, log analysis, common attacks, and OS hardening for Linux and macOS
• Experience working on an on-call rotation in a fast-paced environment
• Excellent analytical & time management skills with the ability to work autonomously or collaboratively with peers
• For U.S. roles: Applicants for this opportunity must be authorized to work for any employer in the U.S. We are unable to sponsor or take over sponsorship of an employment Visa at this time

Responsibilities

• Drive security projects that facilitate the business function and protect our customers, brand, & employees
• Stay apprised of security trends and incidents to prevent similar occurrences by reviewing and implementing security controls based on lessons learned
• Perform security reviews of infrastructure and product features ensuring high standards
• Scale our detection and response capabilities across our environment and systems
• Review bug bounty and external security reports for validation and recommend mitigating controls
• Assist with security questionnaires for prospective customers
• Support vendor security reviews before allowing access to internal data
• Track and drive vulnerability remediation across production and corporate environments
• Assist with security training and ensuring our employees are up to date on the latest security threats
• Act as an escalation point for automated detections that are raised for human review
• Proactively hunt for threats across our environment
• Perform regular on-call duties, including incident commander responsibilities during security incidents
• Ensure security controls are deployed and tested across cloud environments and corporate endpoints
• Act as a technical expert for the team. Mentor and help level up junior engineers
• Automate as much of this as possible!