Incident Response Engineer

Overview

Incident Response Engineer Jobs in Santa Clara, CA at Netskope

Title: Incident Response Engineer

Company: Netskope

Location: Santa Clara, CA

Salary: $100K — $150K *

Category: Information Technology

Job Description

About the position:

The Netskope Global Information Security team is seeking a Security Incident Response Engineer to further scale with the growth of the organizations CSIRT and PSIRT function. This role will work closely with project management, product management, engineering and sustaining teams to drive issues to closure. The Security Incident Response Engineer will actively investigate, improve and lead response activities alongside other incident response members and lead(s). If you have experience leading CSIRTs and PSIRTs and enjoy working in a fast paced globally scaled infrastructure and platform this role is for you.

Responsibilities include:

Responding to and managing customer-impacting security events and findings that are reported to Netskope

Participating in and leading CSIRTs and PSIRTs for the organization working with various departments, technical resources, leadership, and vendors

Publishing and maintaining security advisories and knowledge base articles across various Product and Application Security programs

Performing variant analysis and root cause analysis to find systematic bugs from security incidents

Supporting the triage and remediation of code defects, quantitatively evaluate risk and provide guidance to engineering teams regarding the impact of security issues using industry standard metrics such as CVSS

Supporting implementation of best practice methods, processes, tools and continuous improvement initiatives aimed at scaling and increasing the efficiency of PSIRT processes

Executing projects to a successful outcome; working with business leaders and process owners to realize the goals of projects

Managing the end-to-end workflow for handling and responding to external vulnerability reports, working with Product and Application Security staff, engineering and support organizations

Working with other incident response and applications/system/infrastructure monitoring teams to incorporate/enhance security incident identification capabilities and alerting/escalation procedures

“Blue teaming”, or performing defense tests against scaled Internet and Private Cloud infrastructure

Investigate, track and remediate open source vulnerabilities that impact Netskope which includes working with the open source community

Active involvement and contribution in global security community e.g. FIRST, TI/TF-CSIRT

Manage the end-to-end workflow for handling and responding to external vulnerability reports, working with Product and Application Security staff, engineering and support organizations

Job Requirements:

7+ years of related experience, specifically in Security Operations, Product Security, Product Security Incident Response (PSIRT), Computer Security Incident Response Team (CSIRT), Risk Management or Information Systems

Strong project management skills: planning, organizing, monitoring and reporting on project activities

Bachelor’s degree in Computer Science, Information Systems, or a related field, or equivalent professional experience

Experience in PSIRT, CSIRT, incident response and/or vulnerability response

SANS GIAC, PMP certifications a plus

Ability to be effective in a remote global work environment

Experience with forensics tools and suites

Experience with event and incident response tooling and suites, such has, security automation engineers and alert design within the SIEM

Deep Knowledge of TCP/IP and other application and network level protocols

Ability t…