Apply for this position

Senior Security Operations Engineer


3 weeks ago

Job type: Full-time

Remote (USA Only)

Hiring from: USA Only

Category: Software Development

At Rollbar, our mission is to help developers build software quickly and painlessly. We are a ~70-person team based in San Francisco, Barcelona, and Budapest. Over 100,000 developers use our product to innovate faster and decrease time to market while maintaining best-in-class customer experience. Rollbar is used by some of the best engineering teams in the world, including Twilio, Salesforce, Zendesk, and Twitch. 

The Security Operations Engineer is responsible for operational aspects of security at Rollbar, including system hardening, patching, detection, monitoring, incident response, bug bounty, pen testing and consulting with projects to identify risks. The Security Operations Engineer provides leadership across a broad range of Security Operations disciplines. This highly technical role evaluates new technologies related identification and remediation of operational security risks and is an integral part of the Rollbar Information Security & Compliance team.

You will:
  • Implement, own and operate security technologies/services such as threat and vulnerability management, Data Loss Prevention (DLP), IDM, SSO, MFA, security information and event management (SIEM), Intrusion Detection/Prevention Systems
  • Monitor for security indicators of attack/compromise by correlating and analyzing a variety of application, network, cloud and host-based security logs and determining the correct remediation actions and escalation paths for each incident
  • Build and maintain processes and documentation (e.g. run books) for effectively responding to security incidents and events
  • Partner with Rollbar Platform team to ensure security technologies are actively managed and leveraged to the fullest extent possible and all systems are secure and hardened including patching
  • Create, update, document and refine the security incident response process
  • Develop company-wide information security policies, standards, procedures, trainings and best practices
  • Lead pen testing, security investigations, and Data Subject Access Requests
  • Provide support for company's security and compliance programs

You have:
  • B.S. in Computer Science/related degree or equivalent work experience, with at least 7+ years in the information technology field with 5+ years focused on security discipline
  • Hands-on experience monitoring, detecting, reporting security weaknesses, and enforcing information security policies and best practices in a fast-paced software development environment
  • Knowledge of traffic monitoring, IP traffic flow analysis, sniffing/capturing and monitoring of live traffic streams, digital forensics
  • Experience with Linux, Mac operating systems, virtualization, IaaS, Cloud technologies, web technologies, database systems, networking principles, access control methods and security technologies 
  • Experience with tools such as Nessus, NMAP, BURP, Wireshark, Tenable/Qualys/Rapid7, OSSEC, Suricata, Snort, Splunk/Sumologic/ELK, PaloAlto, DNS
  • Experience with VPC flow logs or other cloud network logging and cloud trail logs
  • 2+ years of experience with scripting/coding (BASH, Python, Java, Go, Perl, PHP, Ruby), infrastructure-as-code (Terraform, Ansible, Chef, Puppet, Salt, Vagrant) and the CloudNative ecosystem (Kubernetes, Docker, Prometheus, Helm)
  • Strong verbal and written communication skills and ability to clearly discuss and present complex security concepts to audiences at all levels

Benefits and perks:
  • Competitive salary and stock options
  • Medical, dental and vision insurance
  • Parental leave: 12 weeks
  • Generous hardware, software, and home office set up allowance
  • Casual work environment
  • Inclusive team-oriented culture
  • Have fun and make an impact

Before you apply, please check if any restrictions apply in terms of time zone or country.

This job has a geo-restriction in place: USA Only.

Apply for this position

Please mention that you come from Remotive when applying for this job.

Does this job need an edit? 🙈

similar jobs

Remotive can help!

Not sure how to apply properly to this job? Watch our live webinar « 3 Mistakes to Avoid When Looking For A Remote Startup Job (And What To Do Instead) ».

Interested to chat with Remote workers? Join our community!