Support the Onit security function during US Central Time business hours.
Implement and manage cloud-native security tools and third-party solutions for threat detection and incident response.
Define, maintain, and execute the Incident Response plan, investigating and resolving incident escalations.
Perform regular risk assessments and vulnerability scans of cloud infrastructure, ensuring timely remediation.
Collaborate with Dev, DevOps, and Infra teams to remediate identified vulnerabilities, discuss security best practices, and assist with security incident response.
Analyze EDR alerts and logs to identify potential security incidents, taking appropriate action.
Continuously evaluate and implement security tools and practices to enhance the security posture of the Onit environment.
Assist with application security reviews and threat modeling.
Assist with security awareness programs for employees regarding security best practices

Requirements

Minimum of 5 years of experience in information security, with at least 3 years focused on cloud security for enterprise SaaS applications.
Proficient in AWS with a strong understanding of AWS networking/VPC, IAM, Security Groups, EC2, RDS, S3, and containers (EKS/ECS).
Extensive hands-on experience investigating security incidents, along with the creation, management, and execution of security runbooks / playbooks.
This includes the ability to search logs in CloudTrail, CloudWatch, VPC Flow logs, etc.
Experience with tooling for network (e.g. Wireshark) and host forensics
Knowledge of various AWS Native Security tools, security frameworks, and CSPM tools.
Experience in security tools such as vulnerability scanners, IDS/IPS, SIEM, firewalls, and endpoint security monitoring.
Experience with threat detection and threat intelligence.
Must be proficient in Linux.
Application security experience with an understanding of SAST, DAST, SBOMs, and other scans and artifacts to help improve application security posture
Experience with AWS Guard Duty and CrowdStrike or equivalent.
Strong communication, problem-solving, and collaboration skills.

Benefits

Health Coverage Choices: Three medical plan options, plus dental and vision, so you can choose what fits best. Employees on our HDHP plan also receive employer contribution to the HSA.
Retirement Savings: 401(k) with a 100% match on the first 3% and 50% on the next 2% of employee contributions.
Time Away: Flexible paid time off, 7 sick days, and 9 paid company holidays annually.
Family Support: Exceptional paid leave for birth parents, non-birth parents, and caregivers. Onit also offers surrogacy and adoption reimbursement.
Income Protection: 100% employer-paid life and disability insurance.
Additional Coverage Options: Voluntary benefits including hospital indemnity, critical illness, accident, and even pet insurance.
Tax-Advantaged Accounts: Healthcare FSA, HSA, and dependent care FSA.
Community Engagement: One paid volunteer day each year to give back to the community.

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

cloud securityincident responserisk assessmentsvulnerability scanssecurity runbooksthreat detectionapplication securitySASTDASTLinux

communicationproblem-solvingcollaboration