Staff Security Engineer - EU / UK

📋 Description

• Proactively monitor for cyber threat activity; manage security alerts with analysis, triage, and response.
• Serve as incident commander during security events; coordinate investigations and cross-functional response.
• Deliver NIST Incident Response Lifecycle aligned services to prepare for, detect, contain, eradicate, recover, and learn.
• Maintain the Cybersecurity Incident Response Plan (CIRP) with alignment to government and law enforcement reporting requirements.
• Document and maintain security operations processes, playbooks, and runbooks for consistent response.
• Participate in 24x7x365 on-call rotations; provide expert guidance and conduct post-incident reviews.

🎯 Requirements

• 8+ years in security operations, including incident response, digital forensics, and threat hunting.
• Experience as incident commander; lead response workflows under pressure for security events of varying severity.
• Advanced knowledge of NIST Incident Response Lifecycle; strong incident response documentation skills.
• Expert-level proficiency with EDR, SIEM, and SOAR security monitoring tools.
• Detections-as-code experience; version control, CI/CD pipelines, and detection testing frameworks.
• Working knowledge of MITRE ATT&CK; map detection coverage and prioritize engineering efforts.
• Experience conducting post-incident reviews and implementing security improvements based on lessons learned.
• Advanced knowledge of AWS cloud services and securing cloud environments.

🎁 Benefits

• Premium private medical and dental coverage
• Generous time off with floating holiday days
• Retirement savings with company contribution
• Equity in a publicly-traded company and an Employee Stock Purchase Program
• Monthly stipend to support remote work
• Annual development stipend to support growth