Key skills
PythonBashAWSTerraformAnsibleOAuthSAMLIdentity ManagementDatadogCloudflareAgileCloud SecurityFirewall
About this role
Fanatics is a global digital sports platform, and they are seeking a Security Engineer III to help protect company assets and stay ahead of security risks. This role involves designing, implementing, and maintaining security measures within the Information Security department.
Responsibilities:
- Continuous evaluation of several security tools including but not limited to Data Loss Prevention, Vulnerability Management, Identity and Access Management, Web Application Firewall, Email Protection and Endpoint Protection
- Evaluate and implement a Security, Orchestration, Automation and Response software
- Develop and maintain a library of scripts to be leveraged to automate threat hunting, detection, and digital forensics efforts
- Design, implement and refine security detection mechanisms to improve operational efficiency and observability
- Effectively maintain a cloud based SIEM by ensuring relevant logs are ingested and alerts are tuned
- Tasked with leveraging expertise in the area of incident response, this role may also function as the lead incident responder
- Stay up-to-date on the latest threats, vulnerabilities, and security trends to ensure that our organization is prepared to address emerging threats
- Conduct security awareness training by conducting internal phishing campaigns
- Collaborate with internal teams to ensure that secure implementation guidelines are followed
- Participate in an on-call rotation to provide 24/7 support for critical incident escalations
Requirements:
- Minimum of 5 years of experience as a security engineer or in a similar role
- Proficient in incident response, threat hunting and cloud security, with a focus on AWS
- Proficient in purple team operations with expertise in offensive and defensive strategy
- Experience with identity management protocols (e.g., OAuth, SAML, OpenID Connect)
- Experience automating incident response playbooks leveraging SOAR solutions
- Ability to communicate effectively with technical and non-technical stakeholders
- Proven experience drafting documentation such as standards, policies and architecture diagrams
- Ability to collaborate and work in a team environment
- Experience with scripting languages such as Python or Bash
- Experience with Cloudflare Datadog, Wiz and Tines is preferred
- Demonstrated experience leveraging Infrastructure as code tools such as Terraform or Ansible is a plus
- Foundational knowledge in agile methodologies with ability to successfully collaborate with multiple stakeholders
- Relevant certifications such as OSCP, SSCP, or GSEC are a plus