Engineer, SecOps
About The Position
As a SecOps Engineer, you will be working on our core infrastructure and will be responsible for integrating, maintaining and improving our application security practices within our infrastructure and applications. You should demonstrate mastery of the principles of security, networking and data assurance, and be comfortable delivering improvements and implementing tools with light supervision from a lead engineer. You will be responsible for the overall security posture of our cloud and application platform including security, resilience, observability and operations. We are looking for self-motivated team members who crave a challenge and feel excited about rolling up their sleeves to realize our potential. This is an infrastructure position so you must have a firm understanding of complex architectures on public cloud services. Bay-area based candidates would work 2-3 days/week in office at our Morgan Hill, CA office for collaboration.
Requirements
- Minimum of 3-5+ years in a SOC, security operations, or IT operations role with production-grade in Google Cloud Platform
- Networking knowledge (DNS, firewall/security groups, VPN, subnets, CIDR)
- Experience with SIEM platforms (Splunk, Sentinel, Rapid7, etc), and cloud security and infrastructure as code tools including Terraform, ArgoCD,, etc
- Strong scripting experience with bash, yaml, Typescript, GO, etc
- Experience with tools such as EDR, WAF, IDS/IPS, Pentests (e.g. Cobalt), etc
- Extensive experience with Docker and Kubernetes clusters
- Experience with Claude, Cursor, Git and GitHub
- Knowledge of best practices related to security, resilience and disaster recovery
- Familiarity with Monitoring, Observability and Alerting tools (Prometheus/Grafana, Pager Duty, OpenTelemetry, etc)
- Strong documentation and compliance management skills - increasing awareness of all things security for the organization
- Bachelor's degree in Computer Science or similar field or equivalent
Nice To Haves
- Experience with DevSecOps (SOC2, PCI and/or ISO 27001 certification a plus)
Responsibilities
- Design, implement, and maintain security tools and processes for the platform that provide the foundation for a world class level of security with our products and services
- Drive security workflow automation, deploy/tune EDR tools, manage security log ingestion, and build custom dashboards for visibility.
- Analyze and solve security problems, providing mitigations and root cause analyses
- Must be able to operate in a fast-moving environment with the ability to adapt to changing priorities and requirements
- Proactive threat management, analyze security alerts, perform prioritization with evidence, and manage incident remediation
- Must be able to monitor and handle emerging escalations and work in an on-call rotation with other engineers
- Be a driving force for incident response and blameless post mortem reporting
- Ensure compliance with security policies, industry regulations (e.g., SOC 2, PCI, etc), and manage IAM roles
Benefits
- Medical, dental, vision, and life insurance benefits available the 1st of the month following hire date
- Short term and long term disability
- Employee assistance program
- Reimbursement for a personal health and wellness membership
- Generous parental leave
- 401(k) available upon hire
- 11 paid holidays
- Flexible time off - take the time off you need!
- Matching donations for approved charitable organizations
- Group volunteer efforts
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
