Manager, Security Engineering
USA - Virtual
Today, there's more data and users outside the enterprise than inside, causing the network perimeter as we know it to dissolve. We realized a new perimeter was needed, one that is built in the cloud and follows and protects data wherever it goes, so we started Netskope to redefine Cloud, Network and Data Security.
Since 2012, we have built the market-leading cloud security company and an award-winning culture powered by hundreds of employees spread across offices in Santa Clara, San Francisco, Seattle, Bangalore, London, Melbourne, and Tokyo. Our core values are openness, honesty, and transparency, and we purposely developed our open desk layouts and large meeting spaces to support and promote partnerships, collaboration, and teamwork. From catered lunches and office celebrations to employee recognition events (pre and hopefully post-Covid) and social professional groups such as the Awesome Women of Netskope (AWON), we strive to keep work fun, supportive and interactive. Visit us at Netskope Careers and follow us on Twitter @Netskope and Facebook.
About the position:
The Netskope Global Information Security (GIS) team is seeking a Manager, Security Engineering to further scale with the growth of the organization's CSIRT and PSIRT function. This role will work closely with security engineering, security architecture, and the security operations center. The Manager, Security Engineering will actively investigate, improve and lead response activities alongside other incident response members and lead(s). If you have experience leading CSIRTs and PSIRTs and enjoy working in a fast paced globally scaled infrastructure and platform this role is for you.
Responsibilities:
- Able to architect and engineer security solutions across the enterprise and lead a team to in-depth technical designs and deployment.
- Operate autonomously to build secure environments
- Create and enforce established run-books and processes
- Build and maintain dashboards and metrics to track tool and team performance
- Responsible for managerial responsibilities such as staffing, performance assessment, career path planning, training, and coaching/mentoring for all engineering team members
- Identify capability enhancement ideas for continuous improvement
- Prioritize and assign resources to support enhancement projects and special requests
- Work with subject matter experts across the program to transform the maturity of the security program to an industry-leading organization.
- Demonstrate proficiency in incident response, kill chain oriented analytics, and identification of IoC’s.
- Evaluate, tune, integrate, and optimize existing toolsets to meet monitoring and intelligence sharing requirements
- Understanding of Identity and Access Management technologies such as SSO/MFA/IGA and operations of those technologies
- Work directly with Security Operations and Leadership to ensure that the final solutions platforms are designed to meet diverse operational goals and initiatives
- Identify solution gaps and translate those gaps into vendor-agnostic technical requirements and/or capabilities
- Working knowledge on Security technologies like Vulnerability Management, Identity and access management, Malware Detection, SIEM, DLP, SASE, CASB
- Bachelor’s Degree in Computer Science, Information Security, Information Systems, or a related field, or equivalent
- Foundation in, and in-depth technical knowledge of, security engineering, computer and network security, authentication, security protocols, and applied cryptography
- Understanding of Cloud Security
- Proficient understanding of regulatory and compliance mandates, including but not limited to GDPR, CCPA, Sarbanes-Oxley.
- SOAR and other Automation knowledge (Python, bash scripting)
- Experienced assessing and escalating to vendors for troubleshooting purposes
- Able to communicate and work with cross-functional teams.
- Detects, identifies and mitigates vulnerabilities in systems, including but not limited to databases, applications, network elements and devices, and data storage
- Deploy security policies, investigate and evaluate alerts for malicious file execution attempts, and design enhanced protocols aligned with protecting corporate-wide production systems
- Utilize various Vulnerability Management tools to scan the enterprise for threats due to missed patches and newly identified vulnerabilities and work with various IT verticals to ensure all systems are hardened and patched
Experience:
- 10+ years of related experience, specifically in Security Engineering, Security Operations, Product Security, Product Security Incident Response (PSIRT), Computer Security Incident Response Team (CSIRT), Risk Management or Information Systems
- 10+ years in an enterprise-scale information security engineering role, with at least 2 years in a leadership position
- Strong project management skills: planning, organizing, monitoring and reporting on project activities
- Experience in PSIRT, CSIRT, incident response and/or vulnerability response
- Ability to be effective in a remote global work environment
- Experience with event and incident response tooling and suites, such has, security automation engineers and alert design within the SIEM
- Deep Knowledge of TCP/IP and other application and network level protocols
- Ability to lead the public communication and release of product security vulnerabilities working with business units, Mitre, Customer teams, and Customers
- Understanding of containerization and containerized applications, their security weaknesses and how to secure them
- Understanding of and experience with patch automation, security orchestration, and management tooling for on premise, private cloud, and cloud infrastructure
Education and Certifications:
- Bachelor’s degree in Computer Science, Information Systems, or a related field, or equivalent professional experience
- CISSP, CEH and or CompTIA Security +, SANS GIAC, CRISC, CISA, PMP or other certifications desired
#LI-TS1
#LI-Virtual
#LI-Remote
Netskope respects your privacy and is committed to protecting the personal information you share with us, please refer to Netskope's Privacy Policy for more details.
Tags: Analytics Automation Bash CCPA CEH CISA CISSP Cloud Compliance CompTIA Computer Science CRISC Cryptography CSIRT GDPR GIAC Incident response Malware Monitoring Network security Privacy Product security PSIRT Python Risk management SANS Scripting SIEM SOAR SSO TCP/IP Vulnerabilities Vulnerability management
Perks/benefits: Career development Team events Transparency
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Product Security Engineer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Security Specialist jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open Information System Security Officer (ISSO) jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Application security-related jobs
- Open Network security-related jobs
- Open CISM-related jobs
- Open Pentesting-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open APIs-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open DevSecOps-related jobs
- Open CI/CD-related jobs