Key skills
PythonGoAWSAzureKubernetesDockerECSCloudWatchTime ManagementCloud Security
About this role
Tines is a company founded in 2018 that powers important workflows through its intelligent workflow platform. They are seeking a Senior Security Operations Engineer to help grow and mature their security program, focusing on driving security projects, maintaining high security standards, and enhancing detection and response capabilities.
Responsibilities:
- Drive security projects that facilitate the business function and protect our customers, brand, & employees
- Stay apprised of security trends and incidents to prevent similar occurrences by reviewing and implementing security controls based on lessons learned
- Perform security reviews of infrastructure and product features ensuring high standards
- Assist with updating policies and procedures in order to maintain our high security standards at Tines
- Scale our detection and response capabilities across our environment and systems
- Track and drive vulnerability remediation across production and corporate environments, partnering with engineering, infrastructure, and security teams to ensure timely resolution
- Assist with security training and ensuring our employees are up to date on the latest security threats
- Act as an escalation point for automated detections that are raised for human review
- Proactively hunt for threats across our environment
- Perform regular on-call duties, including incident commander responsibilities during security incidents
- Ensure security controls are deployed and tested across cloud environments and corporate endpoints
- Automate as much of this as possible using Tines!
Requirements:
- 8+ years in a security role managing complex cloud environments
- Excellent written and verbal English skills
- Deep familiarity with cloud security, including deploying, managing, securing, and monitoring services in AWS or Azure
- Familiarity with securing container technologies like Docker, AWS ECS, and Kubernetes
- Skilled in the use of AWS (or similar) security management and monitoring tools such as CloudTrail, GuardDuty, CloudWatch, Security Hub, Inspector, and Config
- Experience with implementing and monitoring controls around security frameworks such as SOC2, ISO, CMMC, and FedRamp
- Background of automating security tasks with SOAR tools and/or languages like Python/Go
- Knowledge of command-line, log analysis, common attacks, and OS hardening for Linux and macOS
- Experience working on an on-call rotation in a fast-paced environment
- Excellent analytical & time management skills with the ability to work autonomously or collaboratively with peers