Insider Risk Monitoring & Triage Security Engineer
Posted on 3/24/2023
INACTIVE
Square

10,001+ employees

Digital payment processor
Company Overview
Square's mission is to ensure that all businesses are able to participate and thrive in the economy. The company is building infrastrucutre for online payments.
Consulting
Energy
Social Impact
Financial Services
Consumer Goods

Company Stage

N/A

Total Funding

$601.2M

Founded

2009

Headquarters

Oakland, California

Growth & Insights
Headcount

6 month growth

1%

1 year growth

12%

2 year growth

17%
Locations
San Francisco, CA, USA • Remote in USA
Experience Level
Entry
Junior
Mid
Senior
Expert
Desired Skills
Communications
SQL
AWS
Linux/Unix
Google Cloud Platform
CategoriesNew
DevOps & Infrastructure
Software Engineering
Requirements
  • 3+ years of relevant systems, networking, forensics tools, and security experience
  • Strong knowledge of security principles and detection and response capabilities
  • Experience with cloud (AWS and GCP) security fundamentals, networking, and Linux fundamentals
  • Familiarity with Windows, Linux, and MacOS TTPs and MITRE frameworks
  • Knowledge of SQL and log query languages
  • Knowledge of a programing language for automation and scripting
  • Strong problem solving, investigatory, and troubleshooting skills
  • Excellent communication and interpersonal skills
  • Effective organizational skills and ability to manage priorities in a fast-paced environment
  • Empathy, patience, a desire to learn, and help your teammates grow
  • Ability to work independently or collaboratively and lead projects and initiatives
Responsibilities
  • Operate in a trusted position focused on protecting customer data from internal risks
  • Monitor and triage events and alerts through intrusion detection queues, internal Slack channels, vulnerability reports, and other data sources across our ecosystem
  • Support day-to-day alert investigation and response activities, as well as own and drive the resolution of complex security incidents and investigations. Activity includes log analysis, potential data leaks, cloud detections, unusual logins, supporting detection tuning, and threat-hunting
  • Facilitate the creation and or refinement of security policies, runbooks, security metrics, standards, baselines, and guidelines
  • Lead team and cross-team projects focused on runbook, process, and insider risk maturity
  • Develop and adjust automations, scripts, and security tool configurations to drive efficiencies and enhance insider investigations
  • Identify opportunities to improve investigation and triage response processes, engineering workflows, and potential efficiency gains via automations
  • Advise on continuous process improvement via introducing new tools, technologies, practices to help the team scale, and strengthen our security posture
  • Lead and participate in tabletop exercises across diverse business areas and geographies to ensure operational readiness