Senior Engineer – Automation Incident Detection & Response
| Company | Fivetran |
|---|---|
| Location | Oakland, CA, USA, Denver, CO, USA |
| Salary | $208120 – $260150 |
| Type | Full-Time |
| Degrees | |
| Experience Level | Senior |
Requirements
- Proven experience in handling and managing security incidents across diverse environments.
- Demonstrated experience securing cloud-native applications and deployments (AWS, GCP, Azure).
- Deep understanding of securing containerized applications and Kubernetes deployments.
- Experience designing and implementing automated security workflows.
- Proficiency in scripting languages (Python, Bash, Go) for automation.
- Familiarity with SIEM, SOAR, EDR, and vulnerability scanners.
- Ability to analyze security logs, identify malicious activity, and conduct threat investigations.
- Ability to explain complex security concepts to technical and non-technical audiences.
- Understanding of modern attack techniques and effective defense strategies.
- Ability to analyze security issues, identify root causes, and troubleshoot effectively.
- Ability to work effectively independently and within a team.
Responsibilities
- Design and implement enhancements to our existing framework, ensuring scalability and comprehensive automated security operations by refining data flow, integration points, and decision-making logic.
- Automate alert triage, enrichment, investigation, and remediation, seamlessly integrating with SIEM, SOAR, EDR, and other security platforms to enable efficient data sharing and workflow orchestration.
- Create dynamic workflows that adapt to various incident scenarios, triggering automated actions based on real-time events and conditional logic to drastically reduce incident response times.
- Focus on automated remediation and containment strategies by automating vulnerability scanning, patching, and configuration checks, utilizing threat intelligence to block malicious activity, and automatically isolating compromised systems, blocking malicious traffic, and disabling compromised accounts.
- Analyze incident data to identify patterns, trends, and root causes, evaluating the effectiveness of automated processes and identifying areas for improvement to ensure the incident response process remains efficient and effective.
- Enhance security assessment tools and processes, including penetration testing, vulnerability scanning, SIEM, DLP, and EDR.
- Stay up to date with cybersecurity threats, trends, and industry standards to ensure Fivetran remains resilient against emerging risks.
Preferred Qualifications
-
No preferred qualifications provided.