Asana

Security Incident Manager

Asana

full-time

Posted on:

Origin:  • 🇺🇸 United States • New York

Visit company website
AI Apply
Manual Apply

Salary

💰 $150,000 - $246,000 per year

Job Level

SeniorLead

Tech Stack

AWSCloudSplunk

About the role

  • Serve as a hands-on Security Incident Manager and incident commander for Asana
  • Report to the Security Engineering group responsible for company and product security
  • Collaborate cross-functionally with Infrastructure, Customer Success, Legal, IT, Marketing, and leadership to drive incident response outcomes
  • Lead initiatives and OKRs related to incident response improvements for Infrastructure, Security, and Privacy
  • Drive incident management and incident response best practices across the company
  • Mentor team members through pairing, defining processes, and training exercises
  • Participate in and lead the on-call rotation and set examples for security incident management
  • Lead retrospectives and tabletop exercises to improve engineering excellence and incident preparedness

Requirements

  • 10+ years of experience in incident management and security
  • Hands on experience building training and processes to develop engineers into incident responders
  • Experience working in environments composed of mainly SaaS and Cloud resources
  • Hands-on technical expertise in at least two of the following areas: Abuse; Cloud Security; Detection & Response; Digital Forensics; Fraud; Network Security
  • Track record of successfully leading projects and mentoring engineers on incident response
  • Experience in making technical trade-offs and articulating them to stakeholders
  • Strong communication skills with ability to explain complex technical concepts clearly
  • Experience communicating at different levels and to both people internal and external to the company
  • Demonstrates curiosity about AI tools and emerging technologies, with a willingness to learn and leverage them to enhance productivity, collaboration, or decision-making
  • Additional valued experience: Hands on experience with logging and monitoring tools such as DataDog, Splunk, and Panther; Hands on experience with AWS, Google Workspace, and common SaaS applications; Experience with Bug bounty programs; Red Team/Blue Team exercises