Senior Security Developer - Managed Risk

Ready to make an impact? Arctic Wolf is looking for a talented Senior Security Developer - Managed Risk to join our pack.

Arctic Wolf, the leader in security operations, is a fast-growing company in an exciting and fast-growing industry—Cybersecurity. How fast are we growing? Well, Arctic Wolf ranks #25 on the Deloitte Fast Technology 500 for North America in 2019!  We have doubled headcount, customers, and revenue for five years running. 

We are also cultivating a collaborative and productive work environment that welcomes a diversity of backgrounds and ideas to make our teams even stronger. In fact, we are considered among the 2020 Best Places to Work by bizjournals.com.  

At Arctic Wolf, we believe in corporate responsibility. Our offices across North America participate in volunteer programs throughout their communities, and we earned distinction from TravelWise for our efforts in promoting sustainable transportation. 

ABOUT THE ROLE:

The Senior Security Developer - Managed Risk role is both a security expert in their source area and an experienced software developer. They have a strong security engineering and software development background that has a track record of developing high quality vulnerability and security posture management/analysis tooling and content for network, endpoint, and cloud. They look at new and emerging threats to identify the investments we should be making to improve our managed risk capabilities. Their overarching goal is to help us make security better for our clients every day.

Skill Requirements: 

• Mentor team members

• Lead projects across the entire project lifecycle - ensuring that all project artifacts and cross team coordinations are completed

• Develop and maintain our Vulnerability and Security Posture Management technology stack

• Research, develop and maintain high quality and high efficacy vulnerability/security posture analysis content for your area

  • Determine the best and most efficient detection approach for your area

  • Determine what to alert on and what to report on

  • Determine what other customer interactions/investigations/SPiDRs are meaningful for your surface area

  • Author runbooks and templates for any alerts you create or modify

  • Ensure your alerts are high efficacy. Tune them as needed pre-release and as part of post-release reviews.

• Constantly review and refresh security content in your source area

• Manage margins for your log sources (includes COGS for alerting and reports and both infrastructure and S2/CSM costs)

• Collaborate with and address new threats/vulnerabilities the Threat Intel and Security Researchers have identified in your area

• Proactively investigate new sources and new threats/vulnerabilities in your area

• Investigate and address misses in your area

• Identify product and market changes and needed analysis/detection coverage changes in your existing sources

• Provide expert advice and best practices to S2, CSM and Customers on your area

YOUR RESPONSIBILITIES:

• 5+ years experience in the development of security products/systems with a focus on 3 or more of the following key areas:

  • Vulnerability Analysis/Management & Security Posture Management Tools for Network, Endpoint, and Cloud [Highly Desired]

  • Development and maintenance of open source vulnerability management/security posture management systems and security content: OpenVAS, OSSEC, ZaProxy, CloudSploit, Joval, NASL, SCAP, and OVAL [Highly Desired]

  • SIEM detections

  • NDR/IPS/IDS detections/signatures

  • EDR detections/signatures

  • Sigma and Yara rules

  • Development of anomaly and behavioural based detections

  • Tuning and optimization of detections for all the above

• 5+ years experience with the at least two of the following Development Languages & experience with all of the Methodologies:

  • Go, Java, and C/C++

  • Test Driven Development

  • Full understanding and use of DevOps methods/tooling

  • Full understanding/application of secure development practices

  • Cloud Development: AWS, Azure, and GCP using Kubernetes/Containers, IaaS, and key PaaS services

  • Agile (SCRUM/Kanban)

• 5+ years experience with at least 1 of the following security tooling:

  • NGFW (PAN, CISCO, Fortinet, etc.)

  • Open Source IPS/IDS/NSM (e.g. Bro/Zeek/Suricata)

  • SIEMs and Security Analytics platforms (e.g. Elastic, Open Source Big Data Stacks, Splunk, etc.)

• Ability to troubleshoot, educate, and share information with non-technical people

Security Requirements:

• Conducts duties and responsibilities in accordance with AWN’s Information Security policies, standards, processes and controls to protect the confidentiality, integrity and availability of AWN business information.
• Background checks are required for this position

Working at Arctic Wolf: 

Arctic Wolf recognizes that success comes from delighting our customers, so we work together to ensure that happens every day. We believe in diversity and inclusion, and truly value the unique qualities all employees bring to the organization. And we appreciate that—by protecting people’s and organizations’ sensitive data and aiming to end cyber risk— we get to work in an industry that is fundamental to the greater good.

All wolves receive compelling compensation and benefits packages, including:

• Equity for all employees
• Paid parental leave
• Training and career development programs

If you're excited about this role, but do not meet all of the qualifications listed above, we encourage you to apply anyway. We review all applications and still may consider you the right person for the role or have another open position where you’re the perfect fit.

Arctic Wolf is an Equal Opportunity Employer and considers applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, genetics, or any other basis forbidden under federal, provincial, or local law.

Arctic Wolf is committed to fostering a welcoming, accessible, respectful, and inclusive environment that ensures equal access and participation for people with disabilities. Please let us know if you require any accommodations by emailing recruiting@arcticwolf.com.