Security Operations Engineer

Remote

strongDM logo

strongDM

Manage access to any server, database, or Kubernetes instance in minutes. Fully auditable, replayable, secure, and drag-and-drop easy.

View all employer listings

Apply now Apply later

strongDM is a customer-first, second, and third company with a rabid fan base. When was the last time you heard things like: * Splunk's CISO Joel Fulton says "strongDM gives you what you can’t get any other way -- the ability to see what happens, replay and analyze incidents."
* Chef's co-founder Adam Jacob says "strongDM takes the friction out of getting staff access to the systems they need." Customers love us because: The product rocks: strongDM fundamentally changes the relationship between InfoSec, DevOps, and end users. Enforce the controls security needs while making it easier to facilitate access.   They can trust us: we built a technical product for technical buyers. We do not use jargon. There is no alternative but to always be technically accurate. We are not afraid to admit product gaps.   We’re real humans: we built a serious product without taking ourselves too seriously. Each member of the team is deadly good at their job, and yet we crack jokes on the phone with customers. 
So you know how a security ops shop should run…
…and you want to actually put that knowledge to use? This is your chance to make a difference at a security company that is making a difference. You’ll be responsible for establishing our security operations processes and workflows, continuous monitoring of events, and testing our employees to make sure they know what to do when nefarious things happen.

What You'll Do:

  • Define security logging standards, setup continuous monitoring, and establish a SIEM & SOAR platform to ingest and triage all security events
  • Run point on security incident handling, IR drills & tests
  • Implement an internal phishing program to test all employees
  • Partner with Red Canary to improve our EDR capabilities and workflows across workstations and servers
  • Team up with the rest of the Security Department to educate your fellow employees on current security threats
  • Work with the Governance, Risk, and Compliance team to establish and test controls in support of our SOC 2 and FedRAMP programs
  • Write playbooks for all of the above and automate as much of it as you can. The more you automate off of your plate, the more interesting projects you’ll be able to take on

Requirements:

  • You’ve successfully trained fellow employees on security things without putting them to sleep
  • You can handle a security incident without freaking out or pointing fingers at anyone
  • You know that we are here to support and serve the business, not the other way around 
  • Have a “Yes, and…” attitude, be willing to own failure, and speak up when you see room for improvement 
  • Ability to partner with teammates at all levels from individual contributors to executives, and across all lines of business
  • Experience working at a high-growth startup with a culture of incredible customer support
  • Alphabet soup of certs you may have but are in no way required: E|CIH, GCIH, GCFA, CySA+, CASP+

Compensation:

  • Competitive base + equity salary packages
  • Company sponsored benefits, including:
  • Medical, dental, and vision insurance (free to employees and dependents)
  • 401k, HSA, FSA, short / long-term disability coverage, life insurance
  • 4 weeks accrued PTO + sick days + volunteer days + standard holidays, paid parental leave
  • Stipend for internet and phone + home office budget
  • No travel required
Job region(s): Remote/Anywhere
Job stats:  30  3  0
  • Share this job via
  • or

Explore more Information Security career opportunities