Security Engineer

Uptycs is a SQL-powered Security Analytics platform used by security analysts, site reliability engineers, incident response teams, and IT professionals to observe and secure their productivity endpoints (macOS, Windows), server endpoints (Linux, containers) and cloud providers. Uptycs leverages osquery for endpoint telemetry, and we’re looking for developers who can help us enhance the capabilities of the open source agent and also cloud based (Saas) Security Analytics platform.
We are seeking a multi-domain security professional to run our Information Security program at Uptycs. The ideal candidate will be able to work in a rapidly growing environment and thrive when given the chance to bring order to the chaos.

What you'll do:

• Security Engineering - You will develop the tools, technologies and processes that will maintain the balance between security and productivity in a cloud-first, remote-first organization.
• Vulnerability Management - You will find, examine and manage the vulnerabilities in our infrastructure.
• Vendor & Risk Management - You will work to identify, analyze and document the security (and other various) risks you find our environment, from within and without.
• Incident Response - You will evolve the process and technologies used for detecting badness in our environment. You will then lead the efforts to respond and remove it.
• Security Evangelist - You will be a believer in, and spread the gospel of, Secure by Design and Privacy by Design principals. You will mentor and inspire junior personnel.
• Compliance - You will support Uptycs’ ongoing compliance efforts and craft the programs and policies that will drive future regulatory opportunities.

What you must have:

• 5-7 years of experience with Security Engineering work in a cloud-first environment
• Leadership-level experience with GRC programs in start-up organizations
• Senior-level experience with vulnerability and risk management programs
• Senior-level experience with incident response in remote environments
• Experience with AWS, Google Workspace and/or other cloud-first vendors

Nice to have:

• Administration-level experience with endpoint EDR and AV technologies
• Support-level experience with AWS Services

Uptycs provides the first cloud-native security analytics platform that enables endpoint and cloud security from a single platform. The solution provides a unique telemetry-powered approach to address multiple use cases—including Extended Detection & Response (XDR), Cloud Workload Protection (CWPP), and Cloud Security Posture Management (CSPM). Uptycs enables security professionals to quickly prioritize, investigate, and respond to potential threats across a company’s entire attack surface.