Senior Security Analyst (Remote Eligible)

Cyber Security is an integral part of Smartsheet’s corporate culture. At Smartsheet, we believe that it is the responsibility of each and every employee to safeguard information, protect it from unauthorized access, and ensure regulatory compliance. Cyber Security has a significant effect on privacy, consumer confidence, external reputation, and it is a priority on everyone’s agenda.

In this critical role, you will be responsible for building solutions that help Smartsheet security in detection engineering, identifying telemetry gaps and bridging those gaps by collaborating with various stakeholders within Smartsheet. You will perform the role of a strategic thinker and have the operational gravitas to be part of Dev SecOps function to orchestrate world-class detection and response program.

You will: 

• Develop and implement security automation to streamline detection, investigation, and response workflows, reducing manual effort and improving operational efficiency. 
• Leverage SOAR and scripting technologies (e.g., Python, PowerShell, APIs) to automate repetitive security tasks, including alert triage, threat intelligence enrichment, and remediation actions. 
• Design and optimize security automation playbooks to enhance incident response capabilities, ensuring rapid containment and mitigation of threats. 
• Continuously evaluate and improve security tooling integrations, automating log analysis, anomaly detection, and policy enforcement across cloud and on-prem environments.
• Implement effective detection and response program by utilizing industry standard NIST / MITRE attack frameworks
• Serve as technical lead responsible for specific areas of computer security incident response activities to include intrusion detection monitoring, scanning, cyber threat reporting, and development/implementation of vulnerability mitigation strategies.
• Lead the evaluation of vendor proposals, new and existing security designs, and emerging security technologies and systems.
• Serve as a mentor to less experienced staff.
• Be passionate in the pursuit of securing Smartsheet’s data and critical assets
• Work with a team of security professionals responsible for planning, design, detect, implementation, attack mitigation and ongoing support of security systems of high complexity to fulfill the business needs
• Collaborate with other teams to manage endpoint protections effectively and efficiently. In doing so, work closely with the research team, undertake research of threat vectors and provide mitigation strategies.
• Provide recommendations to the management team to increase effectiveness of organization and technology solutions.
• Support security audits to ensure compliance with corporate security policies and adherence to best practices.
• Represent Smartsheet at information security and cyber security communities globally.

You Have: 

• Bachelor’s or Master’s degree in engineering, computer science, information security, information systems or a related field.
• 6+ years of total experience in the field of cyber security
• 2+ years of experience with building automated workflows
• 3+ on detection engineering, penetration testing, security infrastructure tuning / deployment.
• Experience in evaluating threat intelligence feeds to consume it for improving security posture by detecting threat actors and compromises within Smartsheet environments
• Strong expertise in building scalable detection and response program
• Ability to handle multiple competing priorities in a fast-paced environment
• SaaS and Cloud experience 
• Relevant certifications such as CISSP, SANS GCIH, SANS GXPN, SANS GIAC, SANS GREM etc.
• OSCP (Offensive Security Certified Professional) is a Plus
• Solid understanding of events, related fields in log records and alerts reported by various data sources such as Mac/Windows/Unix systems, IDS/IPS, AV, HIDS/HIPS, WAFs, EDR, firewalls, and web proxies
• Excellent understanding of Cyber Security Operations, Incident Response processes and telemetry engineering
• Expertise in Log aggregation, Correlation and alerting using commercial and Open Source tools
• Experience with SIEM solutions like Splunk, Sumologic, ELK, Securonix
• Expert Python Scripting, Perl, Shell scripting and SecDevOps/automation and or orchestration