Staff Security Engineer – SecOps, Threats

Job Description:

• Execute on milestones for end-to-end SecOps & Threat initiatives in accordance with the Security roadmap
• Identify and respond to complex security incidents, including system compromise, intrusion attempts, and/or denial of service attacks by conducting continuous monitoring, vulnerability assessments, and log analysis
• Engage vendors, Infrastructure, IT, GRC, Cloud, and Application Security teams as required to validate alerts, ensure incident resolution, and perform root cause analysis
• Research emerging threats, publicly disclosed vulnerabilities or attack vectors, and proactively push mitigating controls to products and services
• Perform security forensics
• Build security tools and advanced automation that enable the 6sense Security Team to operate at speed and scale
• Propose, plan, lead, and execute threat exercises based on current security trends, advisories, publications, and academic research
• Mentor engineers across Information Security to drive security controls and risk remediation
• Communicate risks and mitigations across multiple audiences with varying levels of sensitivity
• Execute on quarterly individual Key Results that support team Objectives (OKRs)

Requirements:

• 5+ years of experience being part of a Security Operations or similar team
• 3+ years of experience developing automation
• 2+ years of experience conducting adversary emulation exercises
• Experience with security tools and cloud environments (e.g., Vulnerability Scanners, SIEM, SOAR, AWS)
• Experience with industry frameworks, regulations, and standards, such as: MITRE ATT&CK, STRIDE, PASTA, ISO 27001, SOC 2, GDPR, PCI, SOX, NIST, etc.

Benefits:

• Health insurance
• Life and disability insurance
• 401K employer matching program
• Paid holidays
• Self-care days
• Paid time off (PTO)