Senior Security Operations Engineer

Remote - US Engineering
At Rollbar, our mission is to help developers build software quickly and painlessly. We are a ~70-person team based in San Francisco, Barcelona, and Budapest. Over 100,000 developers use our product to innovate faster and decrease time to market while maintaining best-in-class customer experience. Rollbar is used by some of the best engineering teams in the world, including Twilio, Salesforce, Zendesk, and Twitch. 

The Security Operations Engineer is responsible for operational aspects of security at Rollbar, including system hardening, patching, detection, monitoring, incident response, bug bounty, pen testing and consulting with projects to identify risks. The Security Operations Engineer provides leadership across a broad range of Security Operations disciplines. This highly technical role evaluates new technologies related identification and remediation of operational security risks and is an integral part of the Rollbar Information Security & Compliance team.

You will:

  • Implement, own and operate security technologies/services such as threat and vulnerability management, Data Loss Prevention (DLP), IDM, SSO, MFA, security information and event management (SIEM), Intrusion Detection/Prevention Systems
  • Monitor for security indicators of attack/compromise by correlating and analyzing a variety of application, network, cloud and host-based security logs and determining the correct remediation actions and escalation paths for each incident
  • Build and maintain processes and documentation (e.g. run books) for effectively responding to security incidents and events
  • Partner with Rollbar Platform team to ensure security technologies are actively managed and leveraged to the fullest extent possible and all systems are secure and hardened including patching
  • Create, update, document and refine the security incident response process
  • Develop company-wide information security policies, standards, procedures, trainings and best practices
  • Lead pen testing, security investigations, and Data Subject Access Requests
  • Provide support for company's security and compliance programs
  • You have:

  • B.S. in Computer Science/related degree or equivalent work experience, with at least 7+ years in the information technology field with 5+ years focused on security discipline
  • CompTIA CySA+, Security+, CISSP or other security certifications desirable
  • Hands-on experience monitoring, detecting, reporting security weaknesses, and enforcing information security policies and best practices in a fast-paced software development environment
  • Knowledge of traffic monitoring, IP traffic flow analysis, sniffing/capturing and monitoring of live traffic streams, digital forensics
  • Experience with Linux, Mac operating systems, virtualization, IaaS, Cloud technologies, web technologies, database systems, networking principles, access control methods and security technologies 
  • Experience with tools such as Nessus, NMAP, BURP, Wireshark, Tenable/Qualys/Rapid7, OSSEC, Suricata, Snort, Splunk/Sumologic/ELK, PaloAlto, DNS
  • Experience with VPC flow logs or other cloud network logging and cloud trail logs
  • 2+ years of experience with scripting/coding (BASH, Python, Java, Go, Perl, PHP, Ruby), infrastructure-as-code (Terraform, Ansible, Chef, Puppet, Salt, Vagrant) and the CloudNative ecosystem (Kubernetes, Docker, Prometheus, Helm)
  • Strong verbal and written communication skills and ability to clearly discuss and present complex security concepts to audiences at all levels
  • Benefits and perks:

  • Competitive salary and stock options
  • Medical, dental and vision insurance
  • Parental leave: 12 weeks
  • Generous hardware, software, and home office set up allowance
  • Casual work environment
  • Inclusive team-oriented culture
  • Have fun and make an impact

  • Rollbar

    rollbar.com

    Rollbar provides real-time error tracking & debugging tools for developers. JavaScript, PHP, Ruby, Python, Node.js, Android, iOS & more languages supported.


    View all jobs
    Apply now