Member of Technical Staff, Security Operations
New
United StatesFull-TimeStaff
Salary not disclosed
Apply NowOpens the employer's application page
Job Details
- Experience
- 3+ years of hands-on experience in security engineering, application security, penetration testing, or security operations.
- Required Skills
- PythonAlgorithmsData StructuresGo
Requirements
- 3+ years of hands-on experience in security engineering, application security, penetration testing, or security operations.
- Built or maintained security tools, integrations, or automation workflows using Python, Go, or similar languages.
- Can identify and assess security vulnerabilities in applications, APIs, and cloud infrastructure, and effectively communicate remediation strategies.
- Experience with tools like Semgrep, CodeQL, Burp Suite, or equivalent for identifying security issues in code and running systems.
- Understand AWS security fundamentals including IAM, VPCs, security groups, and CloudTrail/logging.
- Can investigate security events, perform root cause analysis, and coordinate response efforts.
- Developed "computer science fundamentals," i.e. concurrency, algorithms, and data structures.
- Genuinely care about code quality and operational excellence.
- Prioritize security outcomes, end-user experience, and business value over "cool tech."
- Self-describe as some combination of the following: creative, humble, ambitious, detail-oriented, hardworking, trustworthy, eager to learn, methodical, action-oriented, and tenacious.
Responsibilities
- Build and maintain security automation and tooling to detect vulnerabilities through static and dynamic analysis across code and live systems.
- Conduct application security assessments, penetration tests, and code reviews to identify high-risk security issues and provide secure development guidance.
- Develop and operate vulnerability management workflows, partnering with engineering teams to prioritize and remediate findings.
- Establish and test security guardrails for code, cloud resources, and infrastructure components throughout the Anchorage platform.
- Monitor and respond to security events and configuration anomalies across the organization, leading investigation and containment efforts.
- Manage the full vulnerability lifecycle from discovery through remediation, tracking progress and ensuring timely closure of findings.
- Lead or substantially contribute to Security Operations initiatives with minimal oversight, coordinating across team boundaries to drive projects to completion.
- Break complex security problems into manageable workstreams with accurate scope and time estimates. Present options clearly and provide well-reasoned priority recommendations.
- Deliver assurance artifacts and evidence for regulated entity requirements, supporting audit and compliance efforts.
- Balance speed of response with thoroughness of investigation, adapting approach based on risk and business impact.
View Full Description & ApplyYou'll be redirected to the employer's site
