Kong Inc. · 3 days ago
Security Engineer - Security Operations/Incident Response
Wonder how qualified you are to the job?
Cloud ComputingCloud Data Services
Insider Connection @Kong Inc.
Responsibilities
Direct our Security Incident Response Team (SIRT), leveraging strategic frameworks, state-of-the-art technologies, and rigorous processes to swiftly identify, manage, and mitigate security incidents. Focus on minimizing the impact of these incidents through effective response and recovery strategies.
Engineer sophisticated detection systems and analytics to proactively identify and neutralize threats across diverse environments, including cloud, corporate, and edge infrastructures.
Foster strong partnerships with Engineering, Risk Management, Compliance, and other critical departments to ensure security measures are perfectly integrated with the broader business goals and objectives.
To strengthen our security infrastructure, we continuously assess, select, and optimize a blend of custom and commercial security tools, including EDR, anti-phishing technologies, and SIEM systems.
Craft and refine advanced strategies, create resilient frameworks, and implement process automation to elevate the maturity of our Detection and Response programs. Develop critical metrics to measure effectiveness and drive continuous improvement.
Design and maintain comprehensive incident response playbooks and detailed documentation to guide the security team's actions during incidents and ensure consistency in response strategies.
Lead proactive threat-hunting initiatives to uncover hidden risks and vulnerabilities. Manage and enhance our security simulation program, including conducting rigorous tabletop exercises to test and improve incident response tactics.
Engage actively in on-call rotations, providing expert support and rapid responses to emergent security issues, ensuring 24/7 protection for our operations.
Developing the security event simulation program and conducting security event tabletop exercises.
Oversee and cultivate strategic partnerships with external vendors and Managed Detection and Response (MDR) services, ensuring they align with our security objectives and deliver exceptional support and technology.
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
Expertise in building and operating security information/event management systems (SIEM), including investigating threats, developing metrics and dashboards, normalizing data feeds, and integrating with other tools.
Strong understanding of attacker tactics, techniques, and procedures (TTPs) and experience with 'Detection as Code.'
Proven expertise in managing and operating SIEM systems; familiarity with CrowdStrike and LimaCharlie SecOps Cloud Platform preferred.
Demonstrated ability to use Tines, the smart, secure workflow builder, to automate processes that detect, contain, and eliminate active malicious agents. This includes designing and implementing automation workflows that enhance our security response capabilities and operational efficiency.
Experience in securing, developing detections, and responding to incidents in one major public cloud infrastructure, such as Amazon Web Services (AWS) or Google Cloud Platform (GCP).
Experience in effectively leading large and complex security incidents from detection to remediation.
Familiarity with modern security frameworks and best practices, such as the MITRE ATT&CK framework and NIST CSF.
Proficiency in one or more general-purpose programming languages such as Python, Ruby, Go, or Rust.
Experience with Linux administration at scale, associated intrusion/manipulation techniques, and standard methodologies for system hardening and process isolation.
Preferred
Experience in building a Detection Engineering Pipeline and leading threat hunts.
Published research in detection engineering or threat intelligence.
Developed automation to enhance security operations.
Benefits
Healthcare benefits
401(k) plan
Short and long-term disability benefits
Basic life and AD&D insurance
Company
Kong Inc.
Powering the API World. Kong enables any company to become an API-first company.
H1B Sponsorship
Kong Inc. has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Trends of Total Sponsorships
2023 (4)
2022 (11)
2021 (7)
2020 (1)
Funding
Current Stage
Late StageTotal Funding
$169.1MKey Investors
Tiger Global ManagementIndex VenturesAndreessen Horowitz
2021-02-08Series D· $100M
2019-03-28Series C· $43M
2017-03-23Series B· $18M
Leadership Team
Recent News
2024-05-01
Company data provided by crunchbase