Lawrence Harvey is partnership with a San Francisco based start-up for a Security Engineer position out of their New York office. This role is instrumental in protecting they cloud-native tools and infrastructure. This person will be a reliable security professional and knowledgeable authority for the engineering teams across the organization. Your impact:
- Enhance and oversee the growing vulnerability management program
- Evaluate risks throughout their asset inventory to effectively prioritize and direct remediation actions
- Lead the advancement of their threat detection efforts by implementing creative strategies to secure our cloud, tools, and devices.
- Conduct security architecture reviews of existing and newly added IaaS and PaaS
- Instill a collaborative *secure* environment between DevOps, Engineers and other SWEs
- Implement detections, automations, and alerts utilizing contemporary software engineering techniques
- Understand and educate the organization on the latest security tooling and frameworks for detection purposes
- Enhance their threat hunting, network forensics, IR playbook capabilities
What you need:
- Prior experience with cloud-native environments and tooling (AWS, Azure, GCP) + Kubernetes
- Hands on in tooling, such as: SIEM, IPS/IDS, WAF, CASB, DLP, etc.
- Experience in a Security Operations Center or Incident Response team: triaging, escalating, managing incidents
- 5+ years in a Security Engineer position
- At least 3+ years in cloud, vuln management or incident response