Cyber Security Incident Response Team Manager, CSIRT
Atlanta
JFrog
The JFrog Platform gives you an end-to-end pipeline to control the flow of your binaries from build to production. Power your software updates to the edgeAt JFrog, we’re reinventing DevOps to help the world’s greatest companies innovate -- and we want you along for the ride. This is a special place with a unique combination of brilliance, spirit and just all-around great people. Here, if you’re willing to do more, your career can take off. And since software plays a central role in everyone’s lives, you’ll be part of an important mission. Thousands of customers, including the majority of the Fortune 100, trust JFrog to manage, accelerate, and secure their software delivery from code to production -- a concept we call “liquid software.” Wouldn't it be amazing if you could join us in our journey?
We are looking for a hands-on, dynamic and fast paced Cyber Security Incident Response Team Manager, CSIRT. In this role you will be responsible for responding to security threats facing the company. You will help further develop the incident response program and automation that protects JFrog today and tomorrow. An ideal candidate is an experienced, highly motivated leader that embraces the opportunity to influence and evangelize security across the organization.
As a Cyber Security Incident Response Team Manager, CSIRT in JFrog you will…
- Lead a team of high-performing incident responders and engineers
- Plan, design and execute incident response processes, workflow and playbook
- Lead engineering projects that include cloud/SaaS security monitoring, automation, endpoint detection and response, improve security awareness
- Deliver accurate and timely security investigations and responses.
- Document incidents from initial detection through final resolution
- Maintain and expand related information security metrics
- Drive a proactive approach by regularly practicing red and purple team exercises
- Manage On-call security support as needed
- Be responsible for JFrog’s Federal Customers
To be a Cyber Security Incident Response Team Manager, CSIRT in JFrog you need…
- US Citizenship and current residency - A must
- 2+ years in leading an incident response team
- 5+ years information security hands-on experience, preferably as part of SOC/IR (tier 3/4)
- Ability to take decisions and manage critical incidents under pressure.
- Proven experience with investigating cloud security incidents on AWS/GCP/Azure following well-known industry standards/framework/benchmark (MITRE, NIST, CIS or equivalent)
- In-depth understanding of SIEM technology (ELK)
- Proven experience with creating incident response workflows, processes and playbooks with defined SLAs and reflecting it to company’s stakeholders (e.g. Executive management)
- Proven experience with automating security flows (SOAR) and threat intelligence.
- Ability to lead projects such as security controls evaluation and integration
- Knowledge on securing\monitoring containerized environments (Docker, K8s) - An advantage
- Familiarity with multiple regulation and compliance standards such as ISO27001, FedRAMP, FIPS, SOC 2.0, GDPR, HIPAA
- Experience managing a SaaS-based FedRAMP-authorized environment.
- Experience building a Security Operations team knowledgeable of FedRAMP and its requirements.
- Experience identifying and implementing FedRAMP-compliant security solutions.
- Ability to recruit, mentor, lead and build a success path for highly quality team individuals and work as a team.
- Excellent interpersonal skills with the ability to engage and discuss technical and business risk caused by security issues with business and legal partners at all levels
JFrog is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, sex, sexual orientation, national origin or nationality, ancestry, age, disability, gender identity or expression, martial status or any other category protected by law.
Tags: Automation AWS Azure Cloud Compliance CSIRT DevOps Docker ELK FedRAMP GCP GDPR HIPAA Incident response ISO 27001 Monitoring NIST SaaS SIEM SLAs SOAR SOC 2 Threat intelligence
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Forensics-related jobs
- Open Kubernetes-related jobs