PagerDuty · 2 days ago
Senior Security Engineer - Security Automation
Wonder how qualified you are to the job?
AnalyticsCloud Computing
Insider Connection @PagerDuty
Responsibilities
Embrace the role of hands-on engineer in implementing security automations, tool integrations, and security relevant alerting to support product and infrastructure guardrails, vulnerability management, and incident response activities.
Mentor and help guide junior team members to scope upcoming projects and support agile approaches to work management.
Foster a strong writing culture through creation of accurately scoped project charters and design documents.
Execute plans at the multi-team level while contributing to roadmap and annual planning discussions.
Collaborate with Compliance and Product Development teams to build a robust vulnerability management program using automations and workflows to drive timely remediations, with focus on increasing visibility with reporting and metrics.
Work with loosely defined requirements where you exercise your analytical skills to clarify questions, share your approach, and collaborate with the rest of the team to build/test elegant solutions.
Participate in our team’s On-Call rotation, triaging and addressing security issues as they arise, and implement measures to prevent future occurrences.
Monitor, support, and maintain 1st party and 3rd party security tools supporting guardrail implementations, compliance automation, incident response, and vulnerability management.
Partner with peer security teams to implement controls that detect and alert on deviations from established policies or standards.
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
3+ years of experience as a full-stack Security Engineer in a cloud-native, micro-service SaaS, PaaS, or IaaS environment, preferably in AWS.
2+ years of experience integrating security testing into SDLC processes and securing CI/CD pipelines.
Demonstrated experience in designing and building API-driven integrations favoring no code/low code solutions where feasible.
Demonstrated experience building Security Orchestration, Automation, and Response (SOAR) playbooks.
Ability to design, implement, monitor, and operate security logging and alerting toolsets.
Technical stack experience required to be successful in this role: AWS Security (GuardDuty, CloudTrail, Secrets Manager, EKS/ECR, IAM family, Config), Vulnerability management (Qualys/Nessus, Wiz, Snyk), SIEM (SumoLogic or Splunk), Container Security, CI/CD Discipline (Helm, Terraform, Chef, Kubernetes (EKS)), Security Incident Response & Risk Management.
3+ years of experience and proficiency in at least one programming language and framework (e.g. Python, Bash, Phoenix/Elixir, Java, Ruby on Rails).
Have exceptional written, oral communication, and interpersonal skills.
Organizational skills with ability to successfully manage multiple priorities and deadlines.
Strong appetite for challenging problems with a high degree of ownership.
Preferred
Current or past experience with obtaining and maintaining FedRAMP authorization.
Experience working at a SaaS company larger than 1000 employees and 100M in revenue.
Ability to think through a complex problem, build a solution, and execute that solution with effective change management skills.
Possesses a strong sense of ownership and a keen discernment for excellence in security systems within a SaaS environment, demonstrating the ability to distinguish what constitutes a truly robust and effective safeguarding infrastructure.
Working knowledge and experience with PagerDuty Incident Management and Process Automation products.
Demonstrated history of mentoring and coaching.
Familiarity with Corporate security needs and solutions, and ability to provide oversight and mentorship to the Corporate Security team to ensure alignment with CISO mandates.
Benefits
Competitive salary
Comprehensive benefits package from day one
Flexible work arrangements
Generous paid vacation time
Paid holidays and sick leave
Dutonian Wellness Days - scheduled company-wide paid days off in addition to PTO
Company equity
ESPP (Employee Stock Purchase Program)
Retirement or pension plan
Paid parental leave - up to 22 weeks for pregnant parent, up to 12 weeks for non-pregnant parent (some countries have longer leave standards and we comply with local laws)
HibernationDuty - an annual company paid week off when everyone at PagerDuty, with the exception of a small, coverage crew, is asked to take a much needed break to truly disconnect and recharge
Paid volunteer time off - 20 hours per year
Company-wide hack weeks
Mental wellness programs
Eligibility may vary by role, region, and tenure
Company
PagerDuty
PagerDuty is an operations performance platform that helps monitor IT infrastructure, detect issues, and resolve incidents.
H1B Sponsorship
PagerDuty has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Trends of Total Sponsorships
2022 (13)
2021 (13)
2020 (3)
Funding
Current Stage
Public CompanyTotal Funding
$523.6MKey Investors
AccelHarrison Metal
2023-10-10Post Ipo Debt· $350M
2019-04-10IPO· nyse:PD
2018-09-06Series D· $90M
Recent News
2024-06-04
thefly.com
2024-06-01
2024-05-31
Company data provided by crunchbase