Senior Security Operations Engineerremoterocketship • Remote, Oregon, United States
Dieses Stellenangebot ist nicht mehr verfügbar
Senior Security Operations Engineer
remoterocketship
- Remote, Oregon, United States
- Remote, Oregon, United States
Über
Own day-to-day security operations for AWS-based cloud and serverless workloads including threat detection, alert triage, incident response, forensics, and post-incident learning. Build and tune detections and automations (SIEM rules, SOAR/runbooks, detection-as-code) to reduce MTTA/MTTR and eliminate noisy alerts. Secure our delivery pipelines & runtime Harden CI/CD and software supply chain, and drive “secure by default” patterns in our SDLC. Lead cloud/serverless hardening (IaC reviews, policy-as-code, least privilege IAM design, network segmentation). Partner with DevOps and Engineering teams to evolve identity & access, endpoint/EDR posture. Coordinate vulnerability management end-to-end: scanning, prioritization, remediation, and reporting. Contribute to security governance (policies, standards, tabletop exercises, BCP/DR inputs) and support compliance efforts (e.g., SOC 2/PCI DSS). Build security tooling and integrations for engineers, acknowledging that ease of use and low friction will encourage adoption and adherence. Define metrics/KPIs and regularly communicate risk & progress to engineering and leadership. Mentor engineers on secure design and champion a positive, enablement-first security culture. Participate in architecture and threat modeling discussions to identify security risks early in the design process. Requirements:
Bachelor’s degree in computer science, engineering, or a related field, or equivalent experience in a similar role within the technology sector. 5 or more years of large-scale distributed system development. Minimum of 3 years’ fintech experience, or equivalent experience with regulated environments with compliance requirements (e.g., SOC2, PCI DSS) Minimum of 5 years working in Security Operations/Cloud Security/Blue Team roles, with deep, hands-on experience in AWS (IAM/GuardDuty/CloudTrail/CloudWatch). Practical expertise with SIEM/log analytics, EDR, and secrets management (e.g., Vault). Experience with cloud platforms (AWS preferred, GCP, Azure) and containerization technologies (Docker, ECS). Experience with CI/CD pipelines and tools (Github Actions). Willingness to participate in a shared on-call rotation for security incidents. Strong programming skills (Node, Typescript). Expertise in system administration, networking, and operating systems (Linux/Unix). Proficient in automation tools (Github Actions, Cloudformation, Terraform, Serverless, AWS SDK). Benefits:
flexible and fully remote work setup that allows you to balance your professional and personal life seamlessly health insurance professional development opportunities
Sprachkenntnisse
- English
Hinweis für Nutzer
Dieses Stellenangebot wurde von einem unserer Partner veröffentlicht. Sie können das Originalangebot einsehen hier.