Responsibilities
- Execute on milestones for end-to-end SecOps & Threat initiatives in accordance with the Security roadmap
- Identify and respond to complex security incidents, including system compromise, intrusion attempts, and/or denial of service attacks by conducting continuous monitoring, vulnerability assessments, and log analysis
- Engage vendors, Infrastructure, IT, GRC, Cloud, and Application Security teams as required to validate alerts, ensure incident resolution, and perform root cause analysis
- Research emerging threats, publicly disclosed vulnerabilities or attack vectors, and proactively push mitigating controls to products and services
- Perform security forensics
- Build security tools and advanced automation that enable the 6sense Security Team to operate at speed and scale
- Propose, plan, lead, and execute threat exercises based on current security trends, advisories, publications, and academic research
- Mentor engineers across Information Security to drive security controls and risk remediation
- Communicate risks and mitigations across multiple audiences with varying levels of sensitivity
- Execute on quarterly individual Key Results that support team Objectives (OKRs)
Requirements
- 5+ years of experience being part of a Security Operations or similar team
- 3+ years of experience developing automation
- 2+ years of experience conducting adversary emulation exercises
- Experience with security tools and cloud environments (e.g., Vulnerability Scanners, SIEM, SOAR, AWS)
- Experience with industry frameworks, regulations, and standards, such as: MITRE ATT&CK, STRIDE, PASTA, ISO 27001, SOC 2, GDPR, PCI, SOX, NIST, etc.
Nice to Have
- Bachelor's degree in a related field
- Relevant industry certifications, such as CISSP, CISM, or GIAC, are highly desirable
