Listing Description
We’re looking for a proven security operations contributor interested in becoming a hands-on leader within our Information Security Team as a Security Operations & Threat Intelligence Manager.
This is a unique opportunity to be hands-on with day-to-day security operations while also managing a team at a company that’s on the verge of becoming the household name in financial products for the 50% of Americans who are not served by traditional financial institutions.
Our Core Tech Stack Includes:
React Native / React JavaScript / TypeScript / Node.js / Kotlin / Java / PostgreSQL / Kubernetes / GCP
The impact you’ll make:
- You’ll drive forward our mission of financial inclusion by managing and executing the security monitoring program.
- Ensure our security tools are comprehensively monitoring our environment and alerting in a way that reduces false positives. You will manage and investigate alerts and partner with other teams when additional investigation is needed
- Manage security alerting and monitoring tools, including ingesting logs and configuring and tuning as needed to optimize the alerts
- Continually maximizing opportunities for automation of alerting, incident response, scanning, and management of vulnerabilities
- Ensure comprehensive coverage of vulnerability scanning tools and manage and perform vulnerability scans and track remediation efforts
- Work cross-functionally with our Product and Engineering teams to ensure security vulnerabilities are properly understood, prioritized, remediation plans developed to address the risk, and remediated in a timely manner
- Oversee validation of security vulnerability remediation activities
- Assist and lead the security incident response process including development of playbooks and tabletop exercises
- Lead the maturity of the threat intelligence program to identify emerging threats and develop action plans to mitigate the threats
- Be an advocate related to security awareness education to facilitate the prevention of security issues and vulnerabilities and ensure secure coding practices are followed
- Advise and contribute to the development of security policy and procedures
- Support the company’s commitment to protect the integrity and confidentiality of systems and data
- Be action-oriented, and take ownership of outstanding items and ensure delivery
You’ll thrive in this role if:
- You have 5+ years experience working in a security operations department
- Demonstrated experience working with engineering teams to identify and remediate vulnerabilities
- Proficiency in common vulnerability scanning tools (Nessus, Qualys, etc)
- Network engineering experience in cloud environments
- Experience working in Cloud environments (AWS and / or GCP)
- Demonstrated experience managing security incidents from identification through resolution
- An organized and attention-to-detail approach (strong tactical execution), effective problem-solving skills, and the ability to make sound decisions in a self-directed and fast-paced environment
- Understanding of Kubernetes and container security strategy (RBAC, AppSec, Ingress/Egress Controls, etc)
- Be able to apply the principle of least privilege and a thorough understanding of IAM security best practices in GCP
- Excellent communication skills (written, verbal, presentation, and interpersonal)
Listing Details
- Citizenship: Not Provided
- Incentives: Not Provided
- Education: Not Provided
- Travel: Not Provided
- Telework: Not Provided