Incident Response & Cloud Security Lead, Security Engineering
Remote, USA
Who We Are
Addepar’s mission is to bring data, technology and people together to help investors make more informed and timely investment decisions. Our wealth management platform is transforming the fintech industry by providing data aggregation, analytics and reporting for even the most complex investment portfolios. Here, your voice matters. We believe that portfolio, market and client insights can make a significant and sustainable impact, one person and one community at a time. Working at the intersection of groundbreaking technology and limitless financial services industry growth, we are optimizing how capital is put to work.
The Role
We are currently seeking an Incident Response & Cloud Security Lead to join our Security Engineering Team!
As a member of the Security Engineering Team at Addepar, the Incident Response & Cloud Security Lead has a broad range of responsibilities and security expertise that is used to solve unique problems to produce the most secure platform for our clients. We are looking for an experienced AWS cloud security practitioner who is a self-starter, takes ownership in the projects they engage, and is a believer in collaborative teamwork. This role is responsible for building out Addepar’s Security Incident Response Team (SIRT) and playbooks used in our current CIRT processes, interfacing closely with our MDR provider, and acting as incident commander for all security-related incidents.
The right applicant is able to consult with internal teams as an SME to ensure best security practices in our cloud architecture and configuration. This includes working with our Infrastructure Platform Team to include security practices in their architecture, design, and runbooks as well as individual development teams working on new projects.
What You’ll Do
- Build out the Addepar Security Incident Response Team using a “follow the sun” model.
- Hire, develop and mentor junior DFIR staff through open communication and training.
- Develop DFIR processes, playbooks, and frameworks.
- Work closely with our MDR provider to triage and investigate alerts as well as ensure full visibility of our environment.
- Take part in Addepar’s security on-call rotation, act as incident commander during Security Incidents, and lead regular incident postmortem exercises.
- Lead triage work during major incidents and validate incident occurrences to identify Security-related risks.
- Monitor Addepar’s AWS accounts through tools like Security Hub, Config, GuardDuty, Macie, Inspector, etc. to ensure compliance with our policies and standards. Work closely with account owners to consult on any complex issues that may arise.
- Stay current with and remain knowledgeable about new TTPs.
- Act as a cloud security SME, responsible for consulting on cloud architecture with various Addepar engineering teams on a wide variety of projects.
- Perform cloud security assessments using automated tooling and manual processes.
Who You Are
- 7+ years of security incident response and investigation experience.
- Bachelor’s degree or higher. Computer Science or Engineering related education preferred.
- Certifications in Incident Response, Forensics, and Cloud Security are a major plus, including:
- GCIH (GIAC Certified Incident Handler)
- GCFE (GIAC Certified Forensic Examiner)
- GCFA (GIAC Certified Forensic Analyst)
- AWS Certified Security - Specialty
- Other Relevant AWS Certifications
- ITIL Foundation
- Experience with investigating using a wide variety of detective technologies such as SIEM, SOAR, packet capture analysis, host forensics and memory analysis tools.
- Proficient in one or more programming languages, including at least one scripting language.
- Ability to build strong relationships and work cross-functionally with internal and external constituents.
- Excellent verbal and written communication and organizational skills, along with the ability to deliver to time-sensitive guidelines.
About Addepar
Addepar was founded in 2009 by Palantir co-founder Joe Lonsdale, who currently serves as an active Chairman of its Board of Directors and General Partner at 8VC. Addepar works with hundreds of leading financial advisors, family offices and large financial institutions that manage data for over $3 trillion of assets on the company's platform. Addepar was named a Forbes Fintech 50 company and honored as a member of the CB Insights Fintech 250. Addepar is headquartered in Silicon Valley and has offices in New York City, Salt Lake City and Edinburgh, Scotland.
At Addepar, we are driven by our core values:
- Take Action - We believe in empowering each other to make decisions that elevate our colleagues and our communities.
- Build Together - We celebrate success by recognizing the value of collaborating with each other, our clients and partners.
- Best Ideas Win - We welcome new ideas that inspire change.
- Demand Transparency - We encourage open discussion and information-sharing to strengthen communication across organizations.
- Solve Problems that Matter - We put our community of clients and partners first by creating technology that meets their needs today
In addition to our core values, Addepar is proud to be an equal opportunity employer. We seek to bring together diverse ideas, experiences, skill sets, perspectives, backgrounds and identities to drive innovative solutions. We commit to promoting a welcoming environment where inclusion and belonging are held as a shared responsibility.
To ensure the health and safety of all Addepeeps and our prospective candidates, we have instituted a virtual interview and onboarding experience.
Tags: Analytics AWS Cloud Compliance Computer Science FinTech Forensics GCFA GCIH GIAC Incident response Scripting Security assessment SIEM SOAR TTPs
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Manager Pentest H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open IDS-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs
- Open IPS-related jobs
- Open CEH-related jobs