Security Automation Engineer
Dotdash is looking for a Security Automation Engineer for our Incident, Detection and Response team with a demonstrated track record of innovative thinking, technical excellence, and mentorship. This role will be tasked with working on complex security projects involving automation, security event management, vulnerability management and remediation.
As a highly visible professional within the Security team, you will be responsible for helping to set technical direction, managing technical projects, and collaborating with other groups within the organization.
About Your Contributions:
- Prevent, investigate, and remediate risks reported to security.
- Build automations and dashboard functionality within the Security Information Event Management (SIEM) system.
- Utilize API based approach to query data from various different sources to build a risk matrix around applications, access, resources and infrastructure.
- Perform analysis of cybersecurity alerts and log files from a variety of sources to identify possible threats.
- Help tune event detection rules to optimize detection efficiency.
- Collaborate with cross-functional partners to establish strong vulnerability management process including bug bounty program
- Improve security sensors by looking for opportunities along with the SOC team to tune the security controls in response to an evolving threat landscape.
- Review, analyze, and evaluate both internally developed software and vendor products and procedures to address security requirements.
- Support the cybersecurity awareness mission by conducting security review and training sessions with internal staff.
- Evaluation of new technologies, tools, and/or development techniques that impact security
About You:
- 3-5+ years’ experience in one or more technical security roles.
- Experience writing maintainable and resilient code in Python or Go.
- Experienced with SIEM technologies such as Devo, Splunk or Nagios.
- Experience with cloud architecture including security setup and incident response strategy.
- Knowledge of NextGen AV/AM products such as Crowdstrike, SentinelOne or Cybereason.
- Knowledge of cloud, application audit and vulnerability management tools such as CloudConformity, Rapid7, Snyk or Veracode.
- Ability to multitask and prioritize work effectively.
- Attention to detail.
- Ability to work independently and as part of a team.
About Us:
Dotdash brands help people find answers, solve problems, and get inspired. We reach over 90 million people each month, more than 35% of the U.S. online population, according to comScore, and are one of the largest content publishers on the Internet. Dotdash brands collectively have won more than 50 industry awards in the last year alone, and are among the fastest-growing in their categories. Our brands include Verywell, Investopedia, The Balance, The Spruce, Lifewire, Byrdie, MyDomaine, TripSavvy, Brides, Liquor.com, TreeHugger, Mother Nature Network, and ThoughtCo.
Please be aware of fraudulent recruiters offering opportunities at Dotdash. Note that any correspondence with a member of the Dotdash recruiting team will come from a @dotdash.com or a [email protected] account belonging to a Dotdash Recruiter. If you are in conversations for a job opportunity and wish to confirm its validity, please reach out directly to [email protected].
Dotdash embraces inclusivity and values our diverse community. We are committed to building a team based on qualifications, merit and business need. We are proud to be an equal opportunity employer and do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.