Staff Security Engineer, Blue Team
Olo
full-time
Posted on:
Location Type: Remote
Location: Remote • New York • 🇺🇸 United States
Visit company websiteJob Level
Lead
Tech Stack
AWSCloudCyber SecurityFirewallsKubernetesLinuxMacOS
About the role
- Guide and coach Olo’s Blue Team on Information Protection, Incident Detection and Response and Service Delivery.
- You will provide strategic and technical oversight to the team and the program.
- Technically lead a team of security engineers and analysts who hunt, detect, and respond to internal and external threats.
- Collaborate with customers and partners to strengthen their security posture.
- Drive ongoing optimizations by implementing new technologies, replacing technologies, addressing evolving threats, scaling practices and automating security activities.
- Ultimately you will keep team member and customers data safe by identifying and mitigating vulnerabilities and risks by providing actionable guidance to product teams.
Requirements
- 5+ years of Security Engineering, Security Operations or Security Architecture experience.
- CISSP, GCIH or similar certification preferred.
- Experience acting as technical lead to distributed teams consisting largely of remote engineers.
- Experience complying with PCI-DSS and other compliance and regulatory standards.
- Experience with attacker tactics, techniques and procedures.
- Knowledge of information technology, evolving threats, attack patterns, incident response and cyber security standards.
- Experience developing and leading incident response, remediation and mitigation activities, and providing status updates and reports.
- Experience analyzing security events to discern events that qualify as a legitimate security incident as opposed to non-incidents (ie. incident investigation, implementing countermeasures, and conducting incident response).
- Deep understanding of operating system, networking and application concepts.
- Experience hardening Windows, MacOS, Linux Containers and Kubernetes.
- Familiarity with AWS security best practices and Infrastructure-as-Code.
- Experience deploying and maintaining security technologies. (e.g. Access Proxies, API Gateway, Anti-Malware, Application Control, Cloud Security Posture, Data Leak Prevention, Data Mapping, Endpoint Detection & Response, Intrusion Detection System, File Integrity Monitoring, Firewalls, Mobile Device Management, Multi Factor Authentication, SIEM, Static Inspection, Vulnerability Assessment, Web Proxies, WAF and Zero Trust).
- Adept at working with internal Product & Engineering, Legal, People & Culture, Finance and GTM teams and external partners, auditors and customers.
- Ability to work during critical incidents or to support coverage requirements.
- Strong English writing and verbal communication skills
Benefits
- Health insurance
- Remote work options
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
Security EngineeringSecurity OperationsSecurity ArchitectureIncident ResponseVulnerability AssessmentCyber Security StandardsIncident InvestigationRemediation ActivitiesOperating System ConceptsNetworking Concepts
Soft skills
CoachingTechnical LeadershipCollaborationCommunicationProblem SolvingAdaptabilityStrategic OversightTeam ManagementAnalytical ThinkingCustomer Engagement
Certifications
CISSPGCIH