Staff Security Engineer – SecOps, Threats

This is a fully remote position, open to applicants in United States.

📋 Description

• Implement milestones for comprehensive SecOps & Threat initiatives aligned with the Security roadmap.

• Detect and address intricate security incidents, such as system compromises, intrusion attempts, and denial of service attacks through ongoing monitoring, vulnerability assessments, and log analysis.

• Collaborate with vendors, Infrastructure, IT, GRC, Cloud, and Application Security teams as necessary to confirm alerts, guarantee incident resolution, and conduct root cause analysis.

• Investigate emerging threats, publicly disclosed vulnerabilities or attack vectors, and proactively advocate for mitigating controls in products and services.

• Conduct security forensics.

• Develop security tools and advanced automation that empower the 6sense Security Team to function efficiently and at scale.

• Propose, plan, lead, and carry out threat exercises based on prevailing security trends, advisories, publications, and academic research.

• Mentor engineers within Information Security to enhance security controls and risk remediation efforts.

• Convey risks and mitigations to diverse audiences with varying levels of sensitivity.

• Achieve quarterly individual Key Results that contribute to team Objectives (OKRs).

⛳️ Requirements

• A minimum of 5 years of experience in a Security Operations or related team.

• At least 3 years of experience in developing automation.

• A minimum of 2 years of experience in conducting adversary emulation exercises.

• Familiarity with security tools and cloud environments (e.g., Vulnerability Scanners, SIEM, SOAR, AWS).

• Knowledge of industry frameworks, regulations, and standards including: MITRE ATT&CK, STRIDE, PASTA, ISO 27001, SOC 2, GDPR, PCI, SOX, NIST, etc.

🏝️ Benefits

• Health insurance.

• Life and disability insurance.

• 401K employer matching program.

• Paid holidays.

• Self-care days.

• Paid time off (PTO).