Olo is a leading open SaaS platform for restaurants that enables hospitality at every touchpoint.

Staff Security Engineer, Blue Team

Security EngineerSecurity EngineerFull TimeRemoteTeam 501-1,000Since 2005H1B No SponsorCompany Site LinkedIn

Location

New York

Posted

85 days ago

Salary

Not specified

Bachelor Degree5 yrs expEnglishAWSCloudCyber SecurityFirewallsKubernetesLinuxMac OS

Job Description

• Guide and coach Olo’s Blue Team on Information Protection, Incident Detection and Response and Service Delivery. • You will provide strategic and technical oversight to the team and the program. • Technically lead a team of security engineers and analysts who hunt, detect, and respond to internal and external threats. • Collaborate with customers and partners to strengthen their security posture. • Drive ongoing optimizations by implementing new technologies, replacing technologies, addressing evolving threats, scaling practices and automating security activities. • Ultimately you will keep team member and customers data safe by identifying and mitigating vulnerabilities and risks by providing actionable guidance to product teams.

Job Requirements

5+ years of Security Engineering, Security Operations or Security Architecture experience.
CISSP, GCIH or similar certification preferred.
Experience acting as technical lead to distributed teams consisting largely of remote engineers.
Experience complying with PCI-DSS and other compliance and regulatory standards.
Experience with attacker tactics, techniques and procedures.
Knowledge of information technology, evolving threats, attack patterns, incident response and cyber security standards.
Experience developing and leading incident response, remediation and mitigation activities, and providing status updates and reports.
Experience analyzing security events to discern events that qualify as a legitimate security incident as opposed to non-incidents (ie. incident investigation, implementing countermeasures, and conducting incident response).
Deep understanding of operating system, networking and application concepts.
Experience hardening Windows, MacOS, Linux Containers and Kubernetes.
Familiarity with AWS security best practices and Infrastructure-as-Code.
Experience deploying and maintaining security technologies. (e.g. Access Proxies, API Gateway, Anti-Malware, Application Control, Cloud Security Posture, Data Leak Prevention, Data Mapping, Endpoint Detection & Response, Intrusion Detection System, File Integrity Monitoring, Firewalls, Mobile Device Management, Multi Factor Authentication, SIEM, Static Inspection, Vulnerability Assessment, Web Proxies, WAF and Zero Trust).
Adept at working with internal Product & Engineering, Legal, People & Culture, Finance and GTM teams and external partners, auditors and customers.
Ability to work during critical incidents or to support coverage requirements.
Strong English writing and verbal communication skills