Security Operations Engineer
Salt Lake City, UT
Varo Bank
Get access to personal banking services including no monthly fee checking, high-yield savings, cash advances up to $250 and more with Varo Bank.The Security Operations Engineer is responsible for operating and maintaining the Security Engineering team’s Vulnerability management, Security Incident and Event Management (SIEM), Data Loss Prevention (DLP), Web Application Firewall (WAF), and Mobile Device Management (MDM) tools. Additionally, the SecOps Engineer will perform forensic recovery/support, incident event management, threat feed management, managed security service provider (MSSP) vendor management, and proactively monitor and defend our networks and applications. The Security Operations Engineer will also be responsible for building the SOC strategy and processes. This role will focus heavily on operational and strategic level tasks, and provide counsel and guidance to the wider engineering organization.The ideal candidate is hands-on, articulate and focused, and can own projects, features and functionality; enjoys learning and mentoring others. We're looking for a world-class security operations engineer to help create a world class security operations environment.
What you'll be doing
- Formulate SOC strategy and processes
- Managed security service provider (MSSP) vendor management
- Monitoring security alerts through SIEM and other tools
- Monitor Web Application Firewall events and alerts
- Monitor DLP/Vulnerability tools for events and alerts
- Develop SIEM event correlation logic and alerting dashboards
- Triage security alerts and escalation handling
- Respond to security incidents, intervene, and escalate as necessary to protect company assets and our customers
- Conduct forensics and gather electronic evidence as necessary
- Conduct employee security awareness training
- Effectively recognize threats by performing relevant research and data analysis
- Recognize opportunities for addressing fraud issues, risks, and exposures
- Collaborate with cross-functional groups such as legal, product, marketing, and platform engineering to enhance processes
- Ability to work extended or non-traditional hours on occasion to support emergency situations
You'll bring the following required skills and experiences
- B.S. or M.S. in Information Security, Computer Science, Information Systems or equivalent experiences and certifications (CISSP, CISM, CISA, or CRISC, GIAC)
- Must have a minimum of 3-5 years of Devops, IT or Information Security with 3+ years in Information Security.
- Competency in Linux/Windows administration
- Must have excellent project management and organizational skills
- Must be able to communicate clearly and concisely with internal and external parties
- Experience in network administration and understanding of DNS, firewalls, proxies, WAFs, SIEM, antivirus, and IDPS concepts
- Broad understanding of network security, cloud infrastructure security, and application security
As the first consumer fintech to be granted a national bank charter in 2020, we make financial inclusion and opportunity for all a reality by empowering everyone with the products, insights, and support they need to get ahead. Through our core product offerings and suite of customer-first features, we aim to address a broad range of consumer needs while profitably serving underserved communities that have been historically excluded from the traditional financial system.
We are growing quickly in our hub locations of San Francisco, Salt Lake City, and Charlotte along with colleagues located across the country. We have been recognized among Fast Company’s Most Innovative Companies, Forbes’ Fintech 50, and earned the No. 7 spot on Inc. 5000’s list of fastest-growing companies across the country.
Varo. A bank for all of us.
Our Core Values- Customers First- Take Ownership- Respect- Stay Curious- Make it Better
Varo is an equal opportunity employer. Varo embraces diversity and we are committed to building teams that represent a variety of backgrounds, perspectives, and skills. All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran or disability status.
Learn more about Varo by following us:Facebook - https://www.facebook.com/varomoneyInstagram - www.instagram.com/varobankLinkedIn - https://www.linkedin.com/company/varobankTwitter - https://twitter.com/varobankEngineering Blog - https://medium.com/engineering-varoSoundCloud - https://soundcloud.com/varobank
Beware of fraudulent job postings!Varo will never ask for payment to process documents, refer you to a third party to process applications or visas, or ask you to pay costs. Never send money to anyone suggesting they can provide work with Varo. If you suspect you have received a phony offer, please e-mail careers@varomoney.com with the pertinent information and contact information.
Tags: Application security Banking CISA CISM CISSP Cloud Computer Science CRISC DevOps DNS FinTech Firewalls Forensics GIAC Linux Monitoring Network security SecOps SIEM Strategy Vendor management Vulnerability management Windows
Perks/benefits: Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Security Operations Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Product Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open IT Security Engineer jobs
- Open Clearance-related jobs
- Open Windows-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Network security-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open IPS-related jobs