Senior Staff Security Engineer, Greenlight

• Bachelor's degree in Information Security, Computer Science, Computer Engineering, or equivalent work experience
• Minimum 10 years of consistent detection & response experience performing triage/incident response in enterprise SaaS environments
• Expert knowledge of the cyber threat landscape – able to articulate and incorporate into program understanding of major threat categories, motivations, and intent of adversaries against enterprise assets
• Experience in at least one programming language, Python, Go, C, C++ and with an automation platform
• Experienced in driving monitoring and automation in cloud environments, preferably including knowledge of AWS and Azure native capabilities
• Strong understanding of advanced persistent threats, attacker methodologies, attack lifecycle, cyber kill chain, and the MITRE framework
• Exceptional collaboration skills and communication skills, with the ability to engage with partners and stakeholders with a variety of perspectives and technical understanding
• Excellent analytical and problem-solving skills
• Strong communication and collaboration skills
• Ability to work independently and as part of a team
• On-call availability is required

Desirable

• As a Senior Staff Security Engineer, Detection and Response you will be responsible for the detection strategy, creation, tuning, validation, and correlation to ensure that we have effective detections in place against an ever-changing threat landscape
• This role is hands-on, carrying the responsibility of running the day-to-day security operations tasks including management of SIEM, automation platform, detection engineering platform and helping incident response
• Reporting into the Sr Director, Security Operations, the ideal candidate will maintain and enhance a consistent and reliable operational security environment and take a proactive security monitoring approach
• This role has high visibility and requires a technical individual who can partner with stakeholders and cross-functional teams (Engineering, Product, SRE, IT, Legal, etc) and has the ability to adapt in a dynamic security landscape
• Responsible for building and expanding detection capabilities across a variety of platforms
• Responsible for security event monitoring, management and response, workflows and tasks
• Improve security monitoring and operational tasks by developing measurement capabilities and metrics to track and communicate performance, coverage and risk
• Evaluate existing SIEM rules, filters, events and use cases and adapt them to meet the business requirements
• Mature security operations; drive integration of new log sources, tools and services
• Create, maintain and manage a library of automated playbooks for security tasks and workflows
• Ensure compliance to SLA, process adherence and process improvisation to achieve operational objectives
• Assist the Security Incident Response Program with related matters resulting from security investigations
• Participate in key security initiatives as the Subject Matter Expert to ensure alignment with strategies and roadmap
• Develop standard operating procedures and other appropriate documentation to enforce quality and consistency of services being delivered
• Support ongoing security compliance, audit, and certification programs (e.g., PCI, HIPAA, SOC2)

• Medical, dental, vision and FSAs
• Unlimited, flexible time off
• Generous employer 401(k) match and equity
• 16-week paid parental leave
• Ongoing learning and development
• Remote-friendly work environment

Total funding: $595.6m

Greenlight was built to help parents raise financially-smart kids. It’s a gap in a generation’s education for which a new sector of ‘family finance’ is emerging to combat.