Job Title
We are seeking a highly skilled Senior Security Engineer to bolster our defensive security capabilities at Chronos Consulting. As a member of our new product security team, you will be responsible for building, supporting, enhancing, and improving our security frameworks, tools, processes, and methodologies used across our Software Development Lifecycle (SDLC) and Runtime environments.
About the Role
* Bolster and develop our defensive security capabilities, identifying advanced threats to the platform, developing and implementing countermeasures.
* Responding to incidents and conducting investigations as events happen through analyzing logs and various other sources (e.g., AWS Guardduty, SecurityHub, Detective, etc.).
* Engineer and automate custom detection and response capabilities to combat malicious and/or unwanted behaviors within the environment.
* Stay up to date with Tactics, Techniques, and Procedures (TTPs) that may apply and define and implement mitigation techniques to improve our overall risk posture.
About You
* At least 5 years of multifaceted defensive and offensive security experience in an enterprise SaaS-based company.
* Strong technical knowledge and deep experience in security logging and monitoring, vulnerability assessment, risk-based analysis, and vulnerability mitigation.
* A skilled security expert who can implement tools and processes to incorporate threat intelligence from the ground up and automate threat-hunting.
Requirements
* Operational experience with AWS security solutions (e.g. Inspector, Guarduty, Detective, Security Hub, Advanced Shield).
* Hands-on experience designing and deploying security controls across all security domains, such as access management, data protection, vulnerability management, incident response and management, application security, network security, preventive, detective, and offensive security solutions.
* Capable of leveraging programming and/or scripting languages to solve practical day-to-day security challenges (Python, Go, Ruby).
* Strong understanding of encryption technologies (e.g., TLS, HMAC, RSA, AES, PKI).
Education and Certifications
* Bachelor's or Master's degree in computer science or equivalent experience.
* Information security professional certifications are a plus (CLSSP, CISSP, CISA, GSSP, GSEC, etc.).
What We Offer
* The opportunity to work on cutting-edge security projects with a world-renowned US startup in the field of automation.
* A dynamic and fast-paced work environment with a focus on innovation and growth.
* A competitive salary and benefits package.