Staff Security Engineer (Threat Detection and Response)

Title: Staff Security Engineer, Threat Detection & Response 

Location: Remote in these states: AZ, CA, CO, FL, GA, KS, KY, IA, ID, IL, IN, MA, ME, MI, MN, MO, NC, NH, NJ, NV, NY, OH, OR, PA, RI, SC, SD, TN, TX, UT, VA, VT, WA, WI  

Role Description: 

As a Staff Security Engineer, Threat Detection & Response, you will play a pivotal role in identifying and analyzing cyber threat tactics, techniques, and procedures ensuring proactive detection capabilities to aid the global threat detection and response mission. You will use your expertise in security technologies, threat detection, and incident response methodologies to ensure the confidentiality, integrity, and availability of our critical data and systems.  

What you’ll do: 

• Design, implement, and maintain threat detection and response solutions for our cloud native environments. 
• Develop and automate security workflows, playbooks, and tools to improve efficiency and effectiveness of security operations. 
• Develop relevant policies, procedures, and guidelines for the Threat Detection and Response program and ensure compliance with, and support audits for, various standards, including ISO270001 and SOC2. 
• Research and evaluate emerging threats and security technologies and provide recommendations for enhancing our security posture. 
• Collaborate with other security team members and stakeholders across the organization to share knowledge and best practices. 
• Work closely with all teams to continuously provide technology requirements and use cases for enabling technologies including but not limited to SIEM, SOAR, Case Management, GRC, EDR, Intrusion Detection Systems, Web Proxy/Content Filtering, Active Directory, and PKI. 
• Build and execute regular threat hunting campaigns focused on current, emerging, and obscure tactics, techniques, and procedures. 
• Proactively search for, identify, and analyze new and existing techniques to detect advanced and targeted threats. 
• Utilize advanced threat hunting techniques to detect anomalies and suspicious activities.  

What you’ll bring to the table: 

• 6+ years of hands-on work experience with security architecture and engineering in a cyber security operations program. 
• 4+ years of experience in an Incident Response, Detection, or Threat Intelligence Role 
• Strong knowledge of cloud security, network security, endpoint security, and threat intelligence. 
• Proficiency in scripting languages such as Python, PowerShell, Go, or Bash. 
• Demonstrated experience securing cloud-based infrastructures; Azure, M365, Google Workspace, Salesforce, etc. 
• Excellent fundamental knowledge of industry standard frameworks such as MITRE ATT&CK. 
• Desire to solve response challenges with automation.  
• Established ability designing and deploying security controls across all security domains such as access management, data protection, vulnerability management, incident response and management, application security, network security, preventive, detective, and offensive security solutions. 
• Excellent design and solution implementation skills for a Zero Trust Architecture. 
• Guide the incident response process, from triage to closure, providing various levels of support and coordination across multiple teams. 
• Outstanding interpersonal and communication skills with the ability to influence both internally and externally, and to drive multi-functional alignment and action.

Nice to have: 

• CISSP, GCIA, GCIH, GREM  

Perks & Benefits: 

• Medical, Dental, Vision & Basic Life Insurance 
• Paid Maternity/Parental Leave Program 
• Flexible Time Off Program 
• Paid Sick Leave and Paid Emergency Leave 
• Floating Holidays (2 days/year) 
• Wellness Days (1 day/quarter) 
• 401K Match  
• Competitive Salary, Performance Bonus  
• Variety of voluntary benefits, such as, short term disability 
• Referral Bonus Program 
• Fun Culture >>> Check us out on Instagram (@lifeatshipbob) 

Classification: Exempt 

Reports to:  Manager, Information Technology 

ShipBob believes in transparency while providing a competitive total compensation package with a pay for performance approach. The expected base pay range for this position is $141,000 - $210,000 and pay is determined based on skills, experience, and capabilities.