Security Operations Engineer
Do you ever wonder what happens inside the cloud?Based in New York and Cambridge, DigitalOcean is a dynamic, high-growth technology company that serves a robust and passionate community of developers around the world. Our mission is to simplify cloud computing for every developer. We are working on solving some of the most challenging and interesting technology projects around, on a scale unmatched by most.
We want people who are passionate about making the internet a safer place for everyone.
We’re looking for inspired and motivated technical contributors to join the DigitalOcean team as Security Operations Engineers. In this role, you will be a key member of DigitalOcean’s security team, reporting to the Director of Security Operations. You will improve the security posture of DigitalOcean both reactively and proactively, as well as handling incidents and making the internet a safer place. Security Operations Engineers must excel at identifying vulnerabilities, building tactical and strategic mitigation plans, and eliminating bad actors inside the DigitalOcean platform.
What You'll Be Doing:
- Handling live intrusions and incident response cases, in a customer-facing and transparent manner, to minimize the impact of bad actors on the internet.
- Proactively hunting threats, red teaming, penetration testing, performing exploit and vulnerability research, all in order to find and close holes exploited by bad actors.
- Engineering approaches to harvest security data, converting that data into actionable intelligence, and collaborating with the technical teams to act on that intelligence.
- Determining creative approaches to complex information security issues.
- Building strong relationships with the other technical teams across our engineering and infrastructure functions.
- Establishing an understanding of DigitalOcean’s entire production environment, from applications to infrastructure, keeping up-to-date with material changes and future directions.
- Coaching and mentoring other skilled security practitioners across application, information, and infrastructure security.
What We’ll Expect From You:
- A high degree of curiosity and aptitude, with a clear passion around security as a lifestyle.
- Significant Experience handing Incident Response actions in response to active intrusions
- Significant Experience in one or more of the following fields:
- Proactive Threat Hunting
- Red Teaming / Attack / Penetration Testing Methods
- Threat Intelligence Collection / Analysis / Dissemination
- Malware Analysis & Reverse Engineering
- Ability to Diagnose, Troubleshoot, and Resolve Infrastructure Security Problems
- Ability to code, script, or automate classes of problems rather than handling them manually
- Intellectual Curiosity and Self-Motivation to perform complex tasks
- Clear written and verbal communications skill to include; technical writing, presenting, coaching, mentoring
- Ability to provide and receive clear, direct, and honest feedback for continuous improvement
- A forward looking perspective on security engineering, tackling each problem with a degree of creativity that uses previous internal/external approaches as a data point, not a rulebook.
- An ability to stay optimistic in the face of all levels of proactive and reactive challenges, building security at scale is hard for everyone and you should be happy and energized by doing it.
- Consistently improving security as the platform scales, driving continuous improvement through data collection and correlation, being mindful that security should be an efficiency enabler for the business - not a detractor.
Why You’ll Like Working for DigitalOcean:
- We have amazing people. We can promise you will work with some of the smartest and most interesting people in the industry. We work hard but we always have fun doing it. We care deeply about each other and take our “no jerks” rule very seriously.
- We value development. We are a high-performance organization that is always challenging ourselves to continuously grow. That means we maintain a growth mindset in everything we do and invest deeply in employee development. You’ll need to be great to get hired here and we promise you’ll get even better.
- We care about you. We offer competitive health, dental, and vision benefits for employees and their dependents, a monthly gym reimbursement to support your physical health, and a monthly commute allowance to make your trips to and from work easier.
- We invest in your future. We offer competitive compensation and a 401k plan with up to a 4% employer match. We also provide all employees with Kindles and reimbursement for relevant conferences, training, and education.
- We want you to love where you work. We have great office spaces located in the heart of SoHo NYC and Cambridge, and offer daily catered lunches to keep your hunger at bay. We’re also very remote-friendly—we use Slack to communicate across the company—and all remote employees have the opportunity to take an all-expense-paid trip to our office to get quality in-person time with the team at least once a year. We also allow employees to customize their workstations to meet their needs—whether remote or in office.
- We value diversity and inclusivity. We are an equal opportunity employer and we do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.