Manager, Security Engineering

USA - Virtual

Applications have closed
About Netskope

Today, there's more data and users outside the enterprise than inside, causing the network perimeter as we know it to dissolve. We realized a new perimeter was needed, one that is built in the cloud and follows and protects data wherever it goes, so we started Netskope to redefine Cloud, Network and Data Security. 

Since 2012, we have built the market-leading cloud security company and an award-winning culture powered by hundreds of employees spread across offices in Santa Clara, San Francisco, Seattle, Bangalore, London, Melbourne, and Tokyo. Our core values are openness, honesty, and transparency, and we purposely developed our open desk layouts and large meeting spaces to support and promote partnerships, collaboration, and teamwork. From catered lunches and office celebrations to employee recognition events (pre and hopefully post-Covid) and social professional groups such as the Awesome Women of Netskope (AWON), we strive to keep work fun, supportive and interactive.  Visit us at Netskope Careers and follow us on Twitter @Netskope and Facebook

About the position:

The Netskope Global Information Security (GIS) team is seeking a Manager, Security Engineering to further scale with the growth of the organization's CSIRT and PSIRT function.  This role will work closely with security engineering, security architecture, and the security operations center. The Manager, Security Engineering will actively investigate, improve and lead response activities alongside other incident response members and lead(s).  If you have experience leading CSIRTs and PSIRTs and enjoy working in a fast paced globally scaled infrastructure and platform this role is for you.

 

Responsibilities:

  • Able to architect and engineer security solutions across the enterprise and lead a team to in-depth technical designs and deployment.
  • Operate autonomously to build secure environments 
  • Create and enforce established run-books and processes
  • Build and maintain dashboards and metrics to track tool and team performance
  • Responsible for managerial responsibilities such as staffing, performance assessment, career path planning, training, and coaching/mentoring for all engineering team members
  • Identify capability enhancement ideas for continuous improvement
  • Prioritize and assign resources to support enhancement projects and special requests
  • Work with subject matter experts across the program to transform the maturity of the security program to an industry-leading organization. 
  • Demonstrate proficiency in incident response, kill chain oriented analytics, and identification of IoC’s.
  • Evaluate, tune, integrate, and optimize existing toolsets to meet monitoring and intelligence sharing requirements
  • Understanding of Identity and Access Management technologies such as SSO/MFA/IGA and operations of those technologies
  • Work directly with Security Operations and Leadership to ensure that the final solutions platforms are designed to meet diverse operational goals and initiatives
  • Identify solution gaps and translate those gaps into vendor-agnostic technical requirements and/or capabilities
  • Working knowledge on Security technologies like Vulnerability Management, Identity and access management, Malware Detection, SIEM, DLP, SASE, CASB
  • Bachelor’s Degree in Computer Science, Information Security, Information Systems, or a related field, or equivalent
  • Foundation in, and in-depth technical knowledge of, security engineering, computer and network security, authentication, security protocols, and applied cryptography
  • Understanding of Cloud Security
  • Proficient understanding of regulatory and compliance mandates, including but not limited to GDPR, CCPA, Sarbanes-Oxley.
  • SOAR  and other Automation knowledge (Python, bash scripting)
  • Experienced assessing and escalating to vendors for troubleshooting purposes
  • Able to communicate and work with cross-functional teams.
  • Detects, identifies and mitigates vulnerabilities in systems, including but not limited to databases, applications, network elements and devices, and data storage
  • Deploy security policies, investigate and evaluate alerts for malicious file execution attempts, and design enhanced protocols aligned with protecting corporate-wide production systems
  • Utilize various Vulnerability Management tools to scan the enterprise for threats due to missed patches and newly identified vulnerabilities and work with various IT verticals to ensure all systems are hardened and patched

 

Experience:

  • 10+ years of related experience, specifically in Security Engineering, Security Operations, Product Security, Product Security Incident Response (PSIRT), Computer Security Incident Response Team (CSIRT), Risk Management or Information Systems
  • 10+ years in an enterprise-scale information security engineering role, with at least 2 years in a leadership position
  • Strong project management skills: planning, organizing, monitoring and reporting on project activities
  • Experience in PSIRT, CSIRT, incident response and/or vulnerability response
  • Ability to be effective in a remote global work environment
  • Experience with event and incident response tooling and suites, such has, security automation engineers and alert design within the SIEM
  • Deep Knowledge of TCP/IP and other application and network level protocols
  • Ability to lead the public communication and release of product security vulnerabilities working with business units, Mitre, Customer teams, and Customers
  • Understanding of containerization and containerized applications, their security weaknesses and how to secure them
  • Understanding of and experience with patch automation, security orchestration, and management tooling for on premise, private cloud, and cloud infrastructure

 

Education and Certifications:

  • Bachelor’s degree in Computer Science, Information Systems, or a related field, or equivalent professional experience
  • CISSP, CEH and or CompTIA Security +, SANS GIAC, CRISC, CISA, PMP or other certifications desired

 

#LI-TS1

#LI-Virtual

#LI-Remote

Netskope respects your privacy and is committed to protecting the personal information you share with us, please refer to Netskope's Privacy Policy for more details.

Tags: Analytics Automation Bash CCPA CEH CISA CISSP Cloud Compliance CompTIA Computer Science CRISC Cryptography CSIRT GDPR GIAC Incident response Malware Monitoring Network security Privacy Product security PSIRT Python Risk management SANS Scripting SIEM SOAR SSO TCP/IP Vulnerabilities Vulnerability management

Perks/benefits: Career development Team events Transparency

Regions: Remote/Anywhere North America
Country: United States
Job stats:  13  1  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.