Security Analyst

About us

At Auctane, we are united by a passion to help sellers — wherever they are, however they operate — fulfill the promises they make to consumers. The Auctane mission is to fuel commerce through exceptional delivery. We make it possible for businesses to meet the ever rising expectations of their customers, and we make the world smaller and more accessible to consumers everywhere. Auctane brands enable hundreds of thousands of merchants to annually deliver billions of products — over $200 billion worth — to customers around the globe. And Auctane is just getting started.

Auctane is a team of shipping and software experts with a passion for helping merchants move their ideas, dreams and innovations around the globe. The Auctane family includes ShipStation, ShipWorks, ShipEngine, ShippingEasy, Stamps, Endicia, Metapack, Shipsi, GlobalPost, and Packlink. Our partners include Amazon, UPS, USPS, eBay, BigCommerce, Shopify, WooCommerce, and Walmart.

Our values

About the role

The mission of this role is to be a key contributor to the day to day operational InfoSec management. The role will be responsible for leading the detection and response of cyber security threats/incidents, as well as managing the vulnerability management process.

This role will play a key part in shaping the processes and ways of working to best ensure Auctan identifies and responds to threats and cyber attacks.

What will you be doing?

• Learn and train, to enhance knowledge of Security Orchestration and Automation. Working to review and enrich playbooks and see opportunities for automation efficiencies in our Security detection and response capabilities.
• Liaising with the Engineering teams on incident response, vulnerability management and remediation actions
• Responsible for providing technical expertise in the support of security incidents using a plethora of leading security tools, coupled with continuous learning and training
• Working with AWS & GCP Cloud-native security tooling such as GuardDuty, Security Hub, GCP Security Command Center to ensure a level of protection & monitoring of threats in Auctane Public Cloud envs.
• Following up on regular security reviews, vulnerability, risk assessments and audits utilising our CSMP tool Wiz and Endpoint vulnerability tool Crowdstrike.
• Building relationships with all staff to promote “Security by Design” throughout the Engineering Teams and wider business, including Infosec Training and Awareness
• Being part of the internal Infosec / cyber security incident process - investigate suspected attacks and help manage security incidents, including providing post-mortem analysis, identify causes, develop solutions and preventive measures
• Responding swiftly to new and emerging security threats and vulnerabilities, investigate suspected attacks and be an integral part of the Information security incident process

What are we looking for?

As a trusted authority within Information Security who can demonstrate and apply the following:

• Previous experience working in an Incident Response style role (internal or customer facing)

• General/ Basic Knowledge:
  • IT (Mac, Windows OS’s)
  • Public cloud Environments (AWS, GCP)
  • Networking Protocols

• Awareness of MITRE ATT&CK framework in a Detect and Respond environment

• Entry level Experience of security tooling and technologies, including:
  • EDR (Crowdstrike)
  • Email Protection (email - Abnormal)
  • Google Workspace
  • Identify Providers (OKTA)
  • GCP/AWS native security (Guard Duty, Security Hub)

• Knowledge of vulnerabilities, threats, attack methods and infection vectors with Cloud Environments.
• Able to balance the demands of delivering high quality and demanding timescales.
• Hold yourself accountable to delivering on your commitments.
• Have a “can-do” attitude and demonstrate a passion for new technology and learning and cross-team collaboration.

What will make you stand out?

• Knowledge of vulnerabilities, threats, attack methods and infection vectors with SDLC
• Experience in using automation to solve problems (Tines.io) and SIEM
• Involvement in the Scoping and coordination of 3rd Party Pen Tests
• General development knowledge:
• A desire to constantly challenge the norm

What do we offer?

• 📦 Discount on your personal shipment orders via stamps.com and GlobalPost.
• 💙 Charitable donation matching! We are happy to support your initiatives by duplicating the amount donated.
• 😊 Volunteer day. You can take 1 day off per year in order to participate in volunteering activities! We will love to see some pictures in our slack!
• Referral Fee 🔗 We need your support in hiring top-class talent! We offer a referral bonus of 500-5K, depending on the complexity of the role and the hiring process.
• ⚖️ Great work-life balance. We offer a flexible work schedule and will do our best to adapt to your situation. Working in a fast-paced environment can be intense, but that doesn’t mean you shouldn’t enjoy your free time!
• 💜 An inclusive and upbeat work environment Leave your suit behind... business casual, jeans accepted kind of place! More importantly, our company culture promotes diversity and inclusion. The personality and opinions of each of our team members are important and valid, and we aim to offer all employees a safe environment where they can be themselves and thrive.
• 🌍 A cross-cultural atmosphere We are a truly international team of over 20 nationalities that speak at least 10 languages. Our company language is English and all internal communication and company-wide meetings are in English.
• 🏟️ Company events Work hard, play hard! We do our best every day, even at our regular team-building events.
• 📺 Internal and external training, free access to online training platforms such as LinkedIn Learning.
• 🏠 We are a hybrid company. All team members at Auctane in Austin come into the office Tuesday-Wed-Thursday.
• 🌅 We offer 10 paid days off for U.S. holidays throughout the year!
• 🏐 Health and Wellness: The well-being of our team is super important to us. Choose from different options that help you focus on your health.
• 🛬Take the reins of your time off with our flexible PTO policy – because work-life balance should always be in your hands!
• 🏢 Attractive office space in the heart of central Austin, Texas (free drinks, snacks…)
• 🍽Indulge in weekly catered lunches at our office – a delicious perk to fuel your work.
• 🚗Free garage parking directly across from the office building.
• 🏋🏾‍♀️Fitness center in the office with Tonal Mirrors, Peletons, free weights, etc.
• 💪🏽We offer a gym discount program to help you stay fit and healthy!
• 🧘🏻‍♂️Find your zen right at the heart of our Austin office with weekly onsite yoga sessions – because balance is key to our vibrant workplace culture!
• 💰401k employer matching program – because your future deserves a friendly boost!
• 📚We offer education reimbursement to all employees, ensuring that you can pursue your educational goals while excelling in your career with us. Invest in your future and let us support your growth every step of the way.
• 🐶We’ve got your furry friend covered with pet insurance discounts.
• 📄Have a helpful legal sidekick right in your back pocket with our free access to Rocket Lawyer.
• 🩺Get ready for hassle-free healthcare from the comfort of your couch – we offer free Telehealth services to keep you feeling your best!
• 💆🏻‍♀️Treat yourself to relaxation on the regular – enjoy a monthly discount at Massage Envy.
• 👕Get ready to rock our brand with style – we've got awesome company swag to offer!
• ⭐️We conduct annual merit reviews to recognize and reward your hard work and achievements.
• 🏡BenefitsHub platform to obtain perks and discounts on auto/home insurance, pet insurance, travel, fitness, etc.
• 🚶🏽‍♀️Wellness programs with wellness discounts on medical benefit deduction and offers various company wellness activities/webinars and challenges such as Steps challenges and a Health Fair!
• 💲Health savings account employer contribution for HSA medical plan enrollees.

Additional Position Duties: (The following is a list of what all employees, except those with medical accommodation, may be regularly required to do.)

• Sit for prolonged periods of time
• Utilize wrist and hands for a prolonged period of time
• Walk short distances
• Stand for short periods
• Speaking and conversing with others
• Lift up to 25lbs without assistance up to chest height

Equal Opportunity Employer/Veterans/Disabled

If you are based in California, we encourage you to read this important information about the ShipStation Privacy Policy for California residents linked here.