Security Engineer
Remote
Zapier
Workflow automation software for everyone. Zapier automates your work across 6,000+ app integrations, so you can focus on what matters.- Our Commitment to Applicants
- Culture and Values at Zapier
- Zapier Guide to Remote Work
- Zapier Code of Conduct
- Diversity and Inclusivity at Zapier
About You
You could write the playbook for alert triage. Knowing what makes a good alert and how to break down alert response into discrete steps is key when it comes to automating that response. You have spent time in the trenches of a SOC, responding to alerts and kicking off the investigative process. You understand typical alert workflows, but can improvise when the need arises. You’ve written SOPs/playbooks/runbooks responding to many different alert sources. Your head’s in the cloud. Zapier is cloud-native, so comfort when digging into provider logs is a must. You’re at home analyzing AWS Cloudtrail, Google Audit Logs, or the equivalent. You’re comfortable investigating and tracking activities of user accounts, access keys, and the like. You're not afraid to get your hands dirty. Improving tools and processes means more to you than “staying in your lane”. If you don’t like an SOP, you improve it. If you think detection logic can be improved, you go for it. Sometimes this means you might break something, but you’re not afraid of owning up to it and growing from the experience. You’re interested in vulnerability management. We are looking to expand our vulnerability management coverage and better integrate with teams throughout the organization. You’re keen on owning this part of our program, and the phrases “auto-remediating updates” and “redeploy, don’t patch” sound good to you. Your idea of a well run vulnerability management program involves automation and never tracking a spreadsheet. You love learning. While traditional SOCs keep you staring at the same alert screen all day, that’s not what we’re about. You’re the sort of person who is excited to go beyond simple queries and into the realm of Python and SQL. You may not have gotten through the “Hello, World” tutorial yet, but you’re not going to let that stop you. You want to help the team grow alerts into automation. You are friendly and patient, welcoming, considerate, and respectful. Learn more about these attributes in our code of conduct.Things You Might Do
Zapier is a fast-growing remote-first company, so you'll likely interact with many different teams and projects across the organization. That said, here are some things you'll probably do:- You will be a key member of the Detection and Response Team, primarily responsible for alert triage, building SOPs, and helping design useful alert automation.
- This is a hands-on role, so you’ll be responding to alerts, leveling up your Python and SQL skills by modifying existing logic, and working across teams to improve the overall response process.
- You will learn about our infrastructure and tech stack in order to own and grow the Vulnerability Management program, working with AWS, terraform, docker images, and kubernetes clusters.
- Learn (and improve!) our Incident Response process so you can help guide teams through security incidents when they occur.
About Zapier
Zapier helps people across the world automate the boring and tedious parts of their job. We do that by helping everyone connect the web applications they already use and love. We believe that there are jobs a computer is best at doing and that there are jobs a human is best at doing. We want to empower businesses to create processes and systems that let computers do what they are best at doing and let humans do what they are best at doing. We believe that with the right tools, you can have big impact with less hassle. We believe in small teams. Small teams are fast and nimble. Small teams mean less bureaucracy and less management and more getting things done. We believe in a safe, welcoming, and inclusive environment. All teammates at Zapier agree to a code of conduct.The Whole Package
We're currently hiring for the following locations:- US
- Canada
- Europe
- Competitive salary (we pay based on the norms of your country)
- Great healthcare + dental + vision coverage*
- Retirement plan with 4% company match*
- Profit-sharing
- 2 annual company retreats to awesome places
- 14 weeks paid leave for new parents of biological or adopted children
- Pick your own equipment. We'll set you up with whatever Apple laptop + monitor combo you want plus any software you need.
- Unlimited vacation policy. Plus we require you to take at least 2 weeks off each year. We see most employees take 4-5 weeks off per year. This isn't a vague policy where unlimited vacation means no vacation.
- Work with awesome companies around the world. We partner with great software companies all over the world and you'll constantly get to interact with people from these great companies
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Automation AWS Cloud Docker Incident response Kubernetes Python SQL Terraform Vulnerability management
Perks/benefits: Career development Competitive pay Flex vacation Gear Health care Startup environment Team events Unlimited paid time off
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open ISO 27001-related jobs
- Open Network security-related jobs
- Open Windows-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs
- Open CEH-related jobs
- Open Forensics-related jobs