Security Engineer (remote)

What You Will Do

• Work with a technology-agnostic user base to provide guidance and respond to inquiries
• Security alert and incident response as applicable
• Participate in forensic analysis and reporting as applicable
• Log reviews and reporting
• Authoring alert criteria where applicable
• Configuration management (Ansible) 
• Exploring OSS (And commercial products) to assess suitability for a proposed solution where applicable.
• Internal auditing and pen-testing
• Participate in RedTeam & BlueTeam exercises
• Identifying potential threats relative to Percona’s infrastructure
• Technical analysis of threats and security product issues reported by Percona staff
• Assess, coordinate, and remediate known threats to Percona’s infrastructure and/or staff
• Write technical documentation on the Security controls you have worked upon or participated with
• Able to work with various APIs to derive information, or provide required functionality such as automation
• Ability to work in an OS-agnostic user support role, supporting Security and Compliance software stack requirements.
• Integrate closely with our Service Desk team as an L1 escalation point to provide support and guidance where required.
• Knowledge of best-practice configuration and assessment for SSH, TLS 
• Unassisted assessment of software, vulnerability, and risks.
• Unassisted review of logs and assessment of issues.
• Familiarity with threat modeling processes. 
• Familiarity with Software Development Lifecycle processes. 

What You Have Done

• 5+ years of successful Linux systems administration
• Role-relevant industry certification.
• Must be able to develop in Bash, Python, or Golang
• Familiarity with Ansible (or similar) configuration management
• Experience with the use of Git, Keybase, PGP, TLS, SSH
• Familiarity with ITIL, ISO, CIS, NIST, HIPAA, PCI standards
• Experience with packet capture and packet analysis
• Containerisation tools such as Docker, Kubernetes, Openshift, LXC, etc.
• Excellent English communication skills both verbally and written (must be able to communicate with technical and non-technical individuals clearly)  
• Working knowledge of TCP/IP, UDP, Multicast, UPNP
• Working knowledge for malware analysis on Linux, OSx and Windows platforms
• Working knowledge of known threats current and past
• Experience performing internal audit/penetration tests to PTES or other standards.
• Working knowledge of OWASP
• Working knowledge of GDPR and privacy by design
• Working knowledge of IDS/IPS OSS technologies

What Will Make You Stand Out

• Go, C, C++, Linux API familiarity
• Risk Assessment experience a benefit (would need to know the bow-tie methodology)
• Industry certifications such as OSCP, CREST, CompTIA security+, CISSP, SANS GIAC an advantage
• Industry tools experience such as Wireshark, Burpsuite, faraday, vuls, openvas, nessus, nmap, masscan an advantage