Senior SecOps Engineer

As a Senior SecOps Engineer, you will be responsible for ensuring the security of our systems and infrastructure. You will work closely with our development and DevOps teams to identify and remediate vulnerabilities, implement security best practices, and automate security processes. You will also monitor and respond to security incidents and ensure compliance with industry regulations and standards.

Responsibilities

LOCATION: Los Angeles, CA (Hybrid)

• Conducting assessments of vulnerabilities in our systems and infrastructure, particularly those that are immediately exploitable or present on critical assets. Implementing both immediate fixes and long-term mitigation strategies to reduce risk.
• Tuning and configuring security tools such as Tenable, SentinelOne, and Sumo Logic to enhance detection accuracy and reduce false positives. Implement and maintain security controls, including access controls, network segmentation, and security monitoring tools.
• Develop and maintain security policies and procedures, and ensure compliance with industry and regulatory standards.
• Develop and deploy cybersecurity strategies to safeguard critical applications, data, and systems, ensuring alignment with industry standards, business objectives, and the changing threat landscape.
• Participate in incident response activities, including investigating security incidents and responding to security alerts.
• Collaborate with development and DevOps teams to implement security best practices throughout the software development and infrastructure lifecycle.
• Automate security processes using scripting and other automation tools.Stay up-to-date with the latest security threats, vulnerabilities, and technologies.
• Participate in a rotational on-call support schedule to ensure 24/7 coverage for critical security incidents and infrastructure issues.

Requirements

• Bachelor's degree in Computer Science, Information Technology, or a related field.
• 5+ years of experience in a security role, preferably in a cloud-based Linux environment and a deep understanding of AWS and Snowflake environments.
• Demonstrated ability to work closely with Product, Architects, and Principals, embedding security methodologies by design across the organization.
• Strong knowledge of security best practices and industry standards, such as NIST, CIS, and ISO.
• Experience with security tools such as Tenable, SentinelOne, Sumo Logic, and vulnerability scanners.
• Experience utilizing infrastructure automation and configuration management tools such as Terraform.
• Strong scripting skills using Go, Python, shell, or other scripting languages.
• Excellent problem-solving skills and the ability to work well under pressure.
• Good communication and interpersonal skills.
• 3+ years experience with container and container orchestration systems
• Mentor and guide engineers across the organization, fostering a culture of continuous learning and security-first principles.
• Relevant certifications such as CISSP, CCSP, or AWS Certified Security Specialty are a plus.