Staff Security Engineer, Monitoring & Incident Response

Spotnana is searching for a staff level detection and response focussed security engineer to join our growing global security and trust team. 

This passionate individual is someone who lives in the details of security incident detection and response, and can thrive in a fast- paced environment where both individual drive and team collaboration are the keys to success. This is a technical hands-on role that is focused on our SaaS platform and overall enterprise. You’ll be working to identify problems, establish a vision for how to address those problems, and unite the relevant owners within the business on achieving that vision!

Responsibilities

• Be part of the global incident response team and contain security incidents when they happen
• Apply deep expertise in threat intelligence and hunting, incident detection at scale, to incident containment and response practices efficient at Spotnana
• Enrich detection capabilities for Spotnana  using attack models (such as MITRE’s ATT&CK framework) and studies related to emerging threats in the industry
• Create and deploy the instrumentation and data capturing capabilities to ensure visibility in large-scale distributed, multi-region cloud services powering Spotnana platform
• Design and evaluation of security solutions that fit well into an API driven, multi-region SaaS platform
• Creating prototypes and/or proof of concepts to demonstrate that a proposed solution would work
• Research on industry landscape and technology developments
• Partnering with leaders and engineers to influence and define execution plans
• Mentorship of junior engineers

Qualifications 

• You must be able to influence without authority, innovate to tackle tough problems, and communicate clearly to all levels of the organization
• Significant technical depth in security incident detection and response:
• Deep understanding of information security intelligence and threat-hunting, preferably with hands-on experience deploying an activity-based intelligence (ABI) model
• Practical application of detection and response methodologies in a variety of environment types, including on premises, private cloud, and public cloud providers
• Hands-on experience with effective incident response and containment practices
• Fluency in building and deploying software using modern engineering practices
• Fluency in at least one programming language, preferably multiple
• Familiarity with the application of Machine Learning in a security context, including its capabilities and limitations
• A broad base of technical knowledge spanning many of the fields of information technology: Examples: software engineering, system administration, network engineering, governance and compliance
• Experience delivering results in an enterprise environment, ideally from a position of little or no direct authority, ideally in efforts that span teams or organizations
• Communicate clearly and effectively and have excellent writing skills
• You must be able to target your communications to the audience, whether technical or not, whether an executive or a front-line individual