Senior Security Engineer, Detection Infrastructure
San Francisco
Asana
Work anytime, anywhere with Asana. Keep remote and distributed teams, and your entire organization, focused on their goals, projects, and tasks with Asana.Asana is looking for a Senior Security Engineer to join our Detection and Response team. This role will lead the technical direction of the developing team, making key investments in systems and processes for building out our detection program. You will be helping to build and advise on the systems we employ to generate, collect, and surface signal to allow for detection of malicious activity on and directed towards Asana the product and company.
The Detection and Response team is made up of Detection Infrastructure and Security Response areas. Detection Infrastructure works closely with the investigators on Security Response to provide tooling and systems that allows for expedient response and focuses on automation above manual work.
What you’ll achieve
- Guide the technical development and execution of Asana’s detection infrastructure area
- Ensure our logging and alerting infrastructure provides adequate coverage of key areas
- Identify and prioritize data sources necessary for performing detection, investigation and response
- Evaluate and implement security event monitoring solutions
- Design, build, and maintain data pipelines and systems to deliver meaningful data to centralized security event monitoring solutions
- Develop best practices around data ingestion, normalization and enrichment to deliver the most high-signal detections to investigators
- Participate in maturing the incident response and investigative capabilities of Asana
- Deploy detections, automations, and alerts using modern software engineering practices (i.e. automated testing/validation, CI/CD pipelines, detections as code, etc.)
About you
- You want to help drive technical direction and execution for a group of detection engineers as well as work on your own projects
- You’re passionate about doing security detection and response right - and have the software engineering chops to lead execution on solutions
- You care about the experience of investigators and response engineers and desire to reduce alert fatigue early in the pipeline
- You reject the idea that more alerts equals better visibility, and develop with intention with an eye towards reducing burnout across the organization
Qualifications
- 3-5 years working in threat detection engineering
- Strong data analysis and data pipeline engineering experience
- Strong software engineering background
- Experience leading large projects and driving execution of engineers
- Proficiency working in AWS and with infrastructure as code
- Experience with SIEM and detection tooling (StreamAlert, Splunk, EDR, IDS, etc)
- Strong working knowledge of modern threats and working familiarity with frameworks like MITRE ATT&CK
About us
Asana enables millions of teams around the world to achieve their goals together, from small projects to strategic initiatives. For the past 5 years, we've been named a top workplace by Fortune, Great Place to Work, Fast Company, Glassdoor, and Built In for our inclusive culture that drives business results. After spending more than two years physically distanced, we're safely and mindfully returning to in-person collaboration, adding more flexibility to our office-centric hybrid culture. With offices all over the world, we are always looking for curious, collaborative, and mission-driven people to help us enable the world’s teams to work together effortlessly.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Automation AWS CI/CD EDR IDS Incident response MITRE ATT&CK Monitoring SIEM Splunk Threat detection
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Analyst jobs
- Open IT Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open ISO 27001-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open Windows-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open DevOps-related jobs
- Open Security assessment-related jobs
- Open Kubernetes-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open CI/CD-related jobs
- Open IDS-related jobs
- Open DevSecOps-related jobs
- Open CEH-related jobs