Talent.com
DevSecOps Engineer (Threat Detection & Penetration Testing)
DevSecOps Engineer (Threat Detection & Penetration Testing)Bask Health • New York, NY, US
DevSecOps Engineer (Threat Detection & Penetration Testing)

DevSecOps Engineer (Threat Detection & Penetration Testing)

Bask Health • New York, NY, US
4 days ago
Job type
  • Full-time
  • Quick Apply
Job description

You will be leveraging your security operations experience to analyze and respond to security notifications, events, and inquiries. You will be performing initial triage of potential security incidents through log and data analysis to determine whether or not activity is a substantiated or valid threat, assessing severity and potential impact, taking pre-approved remediation measures to contain a threat, and escalating findings to investigators for further review and analysis. You will use your knowledge of cyber threats and the results of your analysis to coordinate with partner teams to improve threat detection through tuning and creation of new use cases, to improve capabilities through enriching existing data and creation of new data feeds, and to improve triage accuracy, consistency and timeliness through automation. This role plays a critical part in threat detection and response, ultimately reducing the likelihood of security breaches and protecting sensitive company information.

  • Analyze and investigate activity on company devices that could represent a security threat
  • Work cross-functionally with the Security teams to develop solutions for analyzing security events at scale and protecting Bask networks, systems, and data
  • Interpret disparate data sources to report on trends and support investigative requests
  • Collect requirements for enhancements to detection models and response systems
  • Leverage existing systems and data to perform analyses and promote process improvements
  • Provide actionable insights to help identify, prevent, detect, and respond to anomalous or potentially malicious user activity
  • Collaborate effectively with teammates, lead projects, mentor others, and develop and champion quality operational standards across the team
  • Provide expert technical guidance on threat detection and penetration testing methodologies.
  • Drive the organizational security vision by prioritizing and overseeing the execution of projects aligned with our security roadmap.
  • Collaborate cross-functionally with security engineering teams to enhance detection systems, implement countermeasures, and ensure comprehensive protection of Stripe's networks, systems, and data.
  • Develop, document, and implement strategies, playbooks, and capabilities to advance our threat detection and penetration testing functions.
  • Continuously improve security processes by integrating feedback from penetration tests and threat detection activities into our security architecture.
  • Coach and mentor individual contributors, championing a culture of learning and excellence within the team.

Requirements

  • 5+ years experience in information technology or cyber security roles including security operations / incident response
  • 2+ years experience analyzing large data sets to solve problems and / or manage projects related to security event triage and / or workplace investigations
  • B.S. or M.S. in Cyber Security and Information Assurance, Data Analytics, Computer Science or related field, or equivalent experience
  • Working knowledge of SQL
  • Basic knowledge of scripting or programming in Python and Kali Linux
  • Advanced Javascript knowledge (2+ years)
  • Working knowledge of   AWS Lambda, EventBridge, DynamoDB, and SQS
  • Proven experience with log querying and analysis (e.g. first or third party applications, system / data access, event logs), digital forensics, or incident response using one or more industry standard SIEM Platforms (Splunk, Sentinel, Chronicle, Elastic, etc.)
  • Proficiency using analytical methods to inform detection systems or guide strategic response
  • Strong cross-functional collaboration and written / verbal communication skills
  • Ability to think creatively and holistically about identifying and reducing risk in a complex environment
  • High level of judgment, objectivity, and discretion

    • Preferred qualifications

  • Prior experience working with high volume data in a security operations environment
  • Experience with data processing and analysis tools (e.g. Jupyter Notebooks, Databricks)
  • An adversarial mindset, understanding the goals, behaviors, and TTPs of threat actors
  • Ability to leverage threat intelligence and / or hunting concepts in an enterprise environment
  • Experience in one or more of the following areas : user and entity behavior analytics (UEBA), SOAR / security automation, security information event management (SIEM), data loss prevention (DLP), Information Security, or Data Privacy
  • One or more security certifications through a recognized industry provider : GIAC, ISACA, ISC2, OffSec, CompTIA, etc.
    • Create a job alert for this search

    Detection Engineer • New York, NY, US

    Related jobs
    Senior AWS DevOps Engineer

    Senior AWS DevOps Engineer

    VirtualVocations • New York, New York, United States
    Full-time
    A company is looking for a Senior AWS DevOps Engineer.Key Responsibilities Collaborate with development teams to design, implement, and optimize scalable and secure cloud solutions on AWS Automa...Show more
    Last updated: 30+ days ago • Promoted
    DevOps Engineer Contractor

    DevOps Engineer Contractor

    VirtualVocations • Elizabeth, New Jersey, United States
    Full-time
    A company is looking for a Senior DevOps Engineer (Contract).Key Responsibilities Complete CI / CD pipeline implementation for priority repositories and establish standardized patterns Build and d...Show more
    Last updated: 5 days ago • Promoted
    Senior Cloud Security Engineer

    Senior Cloud Security Engineer

    VirtualVocations • Yonkers, New York, United States
    Full-time
    A company is looking for a Senior Cloud Security Engineer to join their fully remote team.Key Responsibilities Drive effective security detection and response across the production platform Desi...Show more
    Last updated: 30+ days ago • Promoted
    Senior DevSecOps Engineer

    Senior DevSecOps Engineer

    VirtualVocations • Paterson, New Jersey, United States
    Full-time
    A company is looking for a Senior DevSecOps Engineer to lead strategic infrastructure and compliance initiatives in the healthcare industry. Key Responsibilities Take ownership of high-impact IT a...Show more
    Last updated: 30+ days ago • Promoted
    Cloud DevSecOps Engineer

    Cloud DevSecOps Engineer

    VirtualVocations • Yonkers, New York, United States
    Temporary
    A company is looking for a Cloud DevSecOps Engineer IV to join their delivery team on a seven-month contract.Key Responsibilities Create and maintain continuous integration and continuous deliver...Show more
    Last updated: 3 days ago • Promoted
    DevOps Engineer

    DevOps Engineer

    VirtualVocations • New York, New York, United States
    Full-time
    A company is looking for a DevOps Engineer (w / m / d).Key Responsibilities Ensure stable service deployments and maintain system reliability and performance Support the Data Science team with MLOps...Show more
    Last updated: 30+ days ago • Promoted
    AWS IAM DevSecOps Engineer

    AWS IAM DevSecOps Engineer

    VirtualVocations • Jamaica, New York, United States
    Full-time
    A company is looking for an AWS IAM DevSecOps Engineer IV.Key Responsibilities Design, build, and deliver AWS IAM as a service for internal cloud consumers Develop and maintain Terraform code to...Show more
    Last updated: 5 days ago • Promoted
    Security Operations Engineer (Threat Detection & Penetration Testing)

    Security Operations Engineer (Threat Detection & Penetration Testing)

    Bask Health • New York, NY, US
    Full-time
    Quick Apply
    You will be leveraging your security operations experience to analyze and respond to security notifications, events, and inquiries. You will be performing initial triage of potential security incide...Show more
    Last updated: 30+ days ago
    Senior Software Development Engineer, Consumer Domains

    Senior Software Development Engineer, Consumer Domains

    Amazon.com • New Brunswick, NJ, USA
    Full-time
    At Audible, we believe stories have the power to transform lives.It’s why we work with some of the world’s leading creators to produce and share audio storytelling with our millions of global liste...Show more
    Last updated: 2 hours ago • Promoted • New!
    Lead DevOps Engineer

    Lead DevOps Engineer

    VirtualVocations • Yonkers, New York, United States
    Full-time
    A company is looking for a Lead DevOps Engineer (Contract) to architect and manage cloud infrastructure for a blockchain-powered payment network. Key Responsibilities Design and implement infrastr...Show more
    Last updated: 30+ days ago • Promoted
    Senior Security Engineer

    Senior Security Engineer

    VirtualVocations • Jamaica, New York, United States
    Full-time
    A company is looking for a Sr Security Engineer responsible for maintaining and improving the overall security posture and incident response for infrastructure and application hosting environments....Show more
    Last updated: 30+ days ago • Promoted
    Internal Penetration Tester

    Internal Penetration Tester

    VirtualVocations • Bronx, New York, United States
    Full-time
    A company is looking for an Internal Penetration Tester to join a high-impact cybersecurity team in a fully remote role.Key Responsibilities Conduct internal penetration tests across Windows and ...Show more
    Last updated: 13 days ago • Promoted
    AWS Security Engineer

    AWS Security Engineer

    VirtualVocations • Elizabeth, New Jersey, United States
    Temporary
    A company is looking for an AWS Cybersecurity Architect for a short-term contract.Key Responsibilities : Design and manage AWS organizational governance, including Service Control Policies and mul...Show more
    Last updated: 7 days ago • Promoted
    Senior Security Operations Engineer

    Senior Security Operations Engineer

    VirtualVocations • Elizabeth, New Jersey, United States
    Full-time
    A company is looking for a Senior SecOps Engineer to enhance operational security and automate security processes.Key Responsibilities Design and maintain automation workflows to streamline SecOp...Show more
    Last updated: 30+ days ago • Promoted
    Penetration Tester

    Penetration Tester

    VirtualVocations • Bronx, New York, United States
    Full-time
    A company is looking for a Penetration Tester to support client engagements and offensive security initiatives.Key Responsibilities Validate and triage bug bounty submissions for clients, confirm...Show more
    Last updated: 30+ days ago • Promoted
    AWS DevOps Engineer

    AWS DevOps Engineer

    VirtualVocations • Yonkers, New York, United States
    Full-time
    A company is looking for an AWS DevOps Engineer - Tech Lead.Key Responsibilities Collaborate with development teams to design and optimize cloud solutions on AWS Automate infrastructure provisio...Show more
    Last updated: 30+ days ago • Promoted
    Security Engineer

    Security Engineer

    VirtualVocations • Jamaica, New York, United States
    Full-time
    A company is looking for a Security Engineer.Key Responsibilities Secure and monitor blockchain infrastructure, nodes, and validators Partner with smart contract and product teams to secure DeFi...Show more
    Last updated: 30+ days ago • Promoted
    DevSecOps Engineer (Threat Detection & Penetration Testing)

    DevSecOps Engineer (Threat Detection & Penetration Testing)

    Bask Health • New York, NY, US
    Full-time
    You will be leveraging your security operations experience to analyze and respond to security notifications, events, and inquiries. You will be performing initial triage of potential security incide...Show more
    Last updated: 3 days ago • Promoted