Incident Response Engineer Jobs in Santa Clara, CA at Netskope

Title: Incident Response Engineer

Company: Netskope

Location: Santa Clara, CA

Salary: $100K — $150K *

Category: Information Technology

Job Description

About the position:

The Netskope Global Information Security team is seeking a Security Incident Response Engineer to further scale with the growth of the organizations CSIRT and PSIRT function. This role will work closely with project management, product management, engineering and sustaining teams to drive issues to closure. The Security Incident Response Engineer will actively investigate, improve and lead response activities alongside other incident response members and lead(s). If you have experience leading CSIRTs and PSIRTs and enjoy working in a fast paced globally scaled infrastructure and platform this role is for you.

Responsibilities include:

Responding to and managing customer-impacting security events and findings that are reported to Netskope

Participating in and leading CSIRTs and PSIRTs for the organization working with various departments, technical resources, leadership, and vendors

Publishing and maintaining security advisories and knowledge base articles across various Product and Application Security programs

Performing variant analysis and root cause analysis to find systematic bugs from security incidents

Supporting the triage and remediation of code defects, quantitatively evaluate risk and provide guidance to engineering teams regarding the impact of security issues using industry standard metrics such as CVSS

Supporting implementation of best practice methods, processes, tools and continuous improvement initiatives aimed at scaling and increasing the efficiency of PSIRT processes

Executing projects to a successful outcome; working with business leaders and process owners to realize the goals of projects

Managing the end-to-end workflow for handling and responding to external vulnerability reports, working with Product and Application Security staff, engineering and support organizations

Working with other incident response and applications/system/infrastructure monitoring teams to incorporate/enhance security incident identification capabilities and alerting/escalation procedures

“Blue teaming”, or performing defense tests against scaled Internet and Private Cloud infrastructure

Investigate, track and remediate open source vulnerabilities that impact Netskope which includes working with the open source community

Active involvement and contribution in global security community e.g. FIRST, TI/TF-CSIRT

Manage the end-to-end workflow for handling and responding to external vulnerability reports, working with Product and Application Security staff, engineering and support organizations

Job Requirements:

7+ years of related experience, specifically in Security Operations, Product Security, Product Security Incident Response (PSIRT), Computer Security Incident Response Team (CSIRT), Risk Management or Information Systems

Strong project management skills: planning, organizing, monitoring and reporting on project activities

Bachelor’s degree in Computer Science, Information Systems, or a related field, or equivalent professional experience

Experience in PSIRT, CSIRT, incident response and/or vulnerability response

SANS GIAC, PMP certifications a plus

Ability to be effective in a remote global work environment

Experience with forensics tools and suites

Experience with event and incident response tooling and suites, such has, security automation engineers and alert design within the SIEM

Deep Knowledge of TCP/IP and other application and network level protocols

Ability t…


About Netskope

Netskope is an American software company providing a computer security platform. The platform offers cloud-native solutions to businesses for data protection and defense against threats in cloud applications, cloud infrastructure, and the web. Netskope’s Cloud Access Security Brokers product has been recognized by Gartner as a leader in its field. Netskope is based in Santa Clara, California, with a software development facility in Bangalore, India, and further offices in San Francisco, Redmond, New York, St. Louis, London, Melbourne, and Singapore. Netskope was founded in 2012 by Sanjay Beri, Lebin Cheng, Ravi Ithal, and Krishna Narayanaswamy with an initial venture capital of approximately $21m. In October 2013, one year after being founded, Netskope launched its first openly available security software. In that same month, it announced the formation of an advisory team and appointed Enrique Salem, former Symantec chairman and CEO to its board of directors. In 2014, Netskope raised $35m in funding. By mid-2015, the company announced plans to expand to the Australia and New Zealand market and in September, Netskope raised a further $75m in a round led by Iconiq Capital. In 2016, the first two patents were issued to Netskope - Patents 9,270,765 and 9,398,102 for security for network delivered services. In June 2017, Netskope closed the most successful funding round yet, securing $100m in a round led by Lightspeed Venture Partners. The following month, Netskope acquired Sift Security, also a software company with a focus on next-generation cloud infrastructure security. The acquisition brought Sift’s IaaS ‘Cloud Hunter’ into Netskope’s Security Cloud. A year later, in June 2018, Patent 9,928,377 for context-aware data loss prevention was issued to Netskope. 2018 also saw another round of funding for Netskope, as the company raised a further $168.7 in November.