Sr. Security Operations Engineer

 Job Title: Senior SOC Engineer

Employment Type: Full-time

Work Location: Remote - UK or Ireland

About CloudBees

CloudBees provides the leading software delivery platform for enterprises, enabling them to continuously innovate, compete, and win in a world powered by the digital experience. Designed for the world's largest organizations with the most complex requirements, CloudBees enables software development organizations to deliver scalable, compliant, governed, and secure software from the code a developer writes to the people who use it. The platform connects with other best-of-breed tools, improves the developer experience, and enables organizations to bring digital innovation to life continuously, adapt quickly, and unlock business outcomes that create market leaders and disruptors.

CloudBees was founded in 2010 and is backed by Goldman Sachs, Morgan Stanley, Bridgepoint Credit, HSBC, Golub Capital, Delta-v Capital, Matrix Partners, and Lightspeed Venture Partners. Visit www.cloudbees.com and follow us on Twitter, LinkedIn, and Facebook.

About the job

We are growing quickly and have a new opening for a Senior SOC Engineer to join our team. The role has wide ranging responsibilities for information security, outside of a traditional SOC role, with a strong emphasis on AI automation. This includes undertaking business as usual activities like incident management, developing threat detection and intelligence, vulnerability assessment and working on various other cyber security projects. 

We are looking for a person with a strong engineering mind-set having strong exposure to cloud (preferably AWS) and coding skills. Previous experience working in a SOC team is necessary as well as being able to operate SIEM, EDR, and other security tools. You will join a team of globally dispersed Security Analysts and must be able to work in a highly dynamic environment. If you are a proactive self-starter, that is looking to join a fast-growing team, we would love to hear from you.

WHAT YOU'LL DO:

• Provide security monitoring and incident response of cyber security events in a highly available Security Operation Center (SOC) that supports internal and external customers
• Be part of a SOC on-call rotation during weekends (every fourth weekend)
• Monitor and analyze Security Information and Event Management (SIEM) alerts to identify security issues for remediation and investigate events and incidents
• Operate security tools like CNAPP, EDR, SIEM, DLP, various AI tools, vulnerability management solutions, and others
• Develop correlation rules to expand our threat detection capability; enrich the rules with threat intelligence
• Automate repetitive tasks by utilizing AI and traditional automation through API interfaces
• Perform threat hunting to proactively detect incidents
• Liaise with GRC and Product Security to mitigate risks in both enterprise and production environments
• Investigate, document, and report on information security issues and emerging trends.

WHO YOU ARE:

• Experience as a Security Engineer or Incident Responder
• Experience working within a global Security Operations Center (SOC)
• Familiarity with tuning and/or configuring SIEM and vulnerability tools
• Knowledge of SOC standard operating procedures and mainstream security solutions
• Scripting / security automation / AI experience
• Ability to analyze endpoint, network, and application logs
• Knowledge of common Internet protocols and applications
• Working knowledge of cloud services (AWS, GCP, or Azure)
• Familiarity with software product development environments (DevOps) is a plus
• Experience in Threat Intelligence enrichment, automation, or collection is a plus
• Bachelor’s degree in Computer Science, Information Technology or equivalent experience.

WHAT YOU'LL GET:

• Highly competitive benefits and vacation package. 
• Ability to work for one of the fastest growing companies with some of the most talented people in the industry. 
• Team outings.
• Fun, Hardworking, and Casual Environment.
• Endless Growth Opportunities.

At CloudBees, we truly believe that the more diverse we are, the better we serve our customers. A global community like Jenkins demands a global focus from CloudBees. Organizations with greater diversity - gender, racial, ethnic, and global - are stronger partners to their customers. Whether by creating more innovative products, or better understanding our worldwide customers, or establishing a stronger cross-section of cultural leadership skills, diversity strengthens all aspects of the CloudBees organization.

In the technology industry, diversity creates a competitive advantage. CloudBees customers demand technologies from us that solve their software development, and therefore their business problems, so that they can better serve their own customers. CloudBees attributes much of its success to its worldwide workforce and commitment to global diversity, which opens our proprietary software to innovative ideas from anywhere. Along the way, we have witnessed firsthand how employees, partners, and customers with diverse perspectives and experiences contribute to creative problem solving and better solutions for our customers and their business.