Google Cloud Security Engineer, SecOps - India
Bengaluru, India - Remote
JumpCloud
JumpCloud's revolutionary directory unifies device and identity on Windows, Mac, and Linux with cloud based SSO, MDM, MFA, PAM, and more.About JumpCloudJumpCloud® helps IT teams and Managed Service Providers (MSPs) Make Work Happen® by centralizing management of user identities and devices, enabling small and medium-sized enterprises to adopt Zero Trust security models. JumpCloud has been used by more than 200,000 organizations, including GoFundMe, Grab, ClassPass, Beyond Finance, and Foursquare. JumpCloud has raised over $400M from world-class investors including Sapphire Ventures, General Atlantic, Sands Capital, Atlassian, and CrowdStrike. Our teams are growing fast, too, and we're looking for talent across engineering, sales, customer success, marketing, product management, and more. Join our team of dedicated, passionate, and creative people who are eager to change the IT industry forever.
JumpCloud is looking for Security Engineers to drive direction for our security organization as we engineer, triage, respond, and mitigate attacks across JumpCloud products and services. In this position, you will be a part of a flexible team responsible for handling security operations. As such, you'll need to have years of practical security experience in DFIR, and knowledge of best practices for incident handling, security operations, detecting, and responding to attacks. Maybe you have spent time in blue team CTFs or other cyber defense competitions, but you love to be in the fight. You'll be someone JumpCloudians across the company depend on and trust to respond quickly and effectively in a crunch. Your outstanding communication and collaboration skills are essential to collaborating with diverse stakeholders. Most importantly, you will become a critical member of the team responsible for ensuring visibility across JumpCloud products and services and keeping our customers and service partners safe.
About the Role:
The Google Cloud Security Engineer, SecOps role is responsible for Incident Response, Incident Management Lifecycle, creation and management of alerts/detections, forensics, and daily operational needs for the security of the company with a focus on Google Cloud Platform.
Primary Responsibilities/Duties:
- Execute, develop, and document incident management runbooks and processes
- Prepare incident reports of analysis methodology and results.
- Prioritizes events using existing tools to correlate data for the purpose of reducing false positives and detecting threats
- Analyze and tune security alerts and interpret events, as well as create new signals based on signatures and behavioral activities
- Respond to security incidents, lead investigations, and perform forensics on IT systems as necessary.
- Assist with implementation of counter-measures or mitigating controls
- Recognize potential, successful, and unsuccessful intrusion attempts and potential compromises through thorough reviews and analyses of relevant event detail and summary information
- Partner with key stakeholders and communicate effectively to continuously improve the feedback loop of preparation, identification, analysis, containment, and post mortem activities.
- Prepare executive summaries and conduct briefings on significant investigations.
Additional Responsibilities/Opportunities for growth:
- Depending on your skillset and interest level, the following responsibilities are available to all members of the security team: Contribute to our Threat Modeling and Threat Assessment efforts
- Partner with engineering teams to promote secure coding practices
- Pentesting and Red Team Operations
Qualifications And Skills
- Expertise in building and operating security information/event management systems (SIEM), centralized logging, and enrichment solutions (Endpoint protection/detection, Network telemetry data, ELK, DataDog, SumoLogic, Snowflake, AWS and GCP services, HR systems, codebase infrastructure, build infrastructure).
- Expertise with Linux, Windows, and MacOS security and best practices
- Practical experience working with GCP and knowledge of GCP security best practices
- Ability to automate workflows via scripting languages: Python, Go, & Shell
- Superb communication skills and capacity; ability to partner effectively with diverse company stakeholders.
- Active and current knowledge of campaign behavior, trending threats, IoCs, TTPs, and mitigation techniques as blue team operations
- Competency in integrating Threat data, enrichments, for higher-value outcomes and behavioral situational awareness.
- Industry certifications such as GCIH, GCIA, CFCE, GFCA and/or GCFE are a plus
Personal Characteristics
- Views security as an enabler, not an inhibitor to innovation
- Results oriented
- High Level of Integrity
- Ownership and Accountability
- High Level of Autonomy
- Clear Communication
- Creative Problem Solver
- Passionate about Security
Where you’ll be working/Location:JumpCloud is committed to being Remote First, meaning that you are able to work remotely within the country noted in the Job Description.
This role is remote in the country of India. You must be located in and authorized to work in India to be considered for this role.
Why JumpCloud? If you thrive working in a fast, SaaS-based environment and you are passionate about solving challenging technical problems, we look forward to hearing from you! JumpCloud is an incredible place to share and grow your expertise! You’ll work with amazing talent across each department who are passionate about our mission. We’re out of the box thinkers, so your unique ideas and approaches for conceiving a product and/or feature will be welcome. You’ll have a voice in the organization as you work with a seasoned executive team, a supportive board and in a proven market that our customers are excited about. One of JumpCloud's three core values is to “Build Connections.” To us that means creating " human connection with each other regardless of our backgrounds, orientations, geographies, religions, languages, gender, race, etc. We care deeply about the people that we work with and want to see everyone succeed." - Rajat Bhargava, CEO Please submit your résumé and brief explanation about yourself and why you would be a good fit for JumpCloud. Please note JumpCloud is not accepting third party resumes at this time. JumpCloud is an equal opportunity employer. All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran or disability status. #LI-Remote #BI-Remote
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: AWS Blue team Business Intelligence CFCE Cloud CrowdStrike Cyber defense DFIR ELK Finance Forensics GCFE GCIA GCIH GCP Incident response Linux MacOS Pentesting Python Red team SaaS Scripting SecOps SIEM Snowflake TTPs Windows Zero Trust
Perks/benefits: Career development Flex hours Startup environment Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs