🪄 Skills: PythonCommunication SkillsTerraformAttention to detail
Requirements:
Experience as a seasoned Enterprise Security engineer with strong analytical skills.
Leading investigations and incidents in cloud environments.
Experience with common Enterprise Security tooling including SSO solutions, SIEM, and EDR/XDR.
Developing native data ingestion and normalization integrations.
Developing and deploying services using Infrastructure as Code with Terraform or similar.
Experience in developing API integrations and automation (Python or similar).
Ability to lead cross-functional projects and communicate effectively with technical and non-technical audiences.
Experience in applying IAM controls is a plus.
Strong problem-solving skills, attention to detail, and ability to manage multiple tasks.
Responsibilities:
Drive monitoring, detection, and response including remediation for security incidents and investigations throughout our environment.
Build and enhance our current logging pipeline to help ingest the right data sources needed to improve our visibility.
Integrate security tooling into existing infrastructure.
Develop security software configurations and improve tool functionality over time.
Build automation between tools to improve logging, detection, and response workflows.
Configure and implement security services, including identity and access management, detective controls, infrastructure protection, and data protection.
Contribute to developing and maturing security incident response playbooks and processes.
Collaborate with cross-functional teams across CloudLinux and lead key security projects.
Be the senior escalation point for the team when needed for help with investigations and incidents.