ExtraHop is seeking a Sr. Product Security Engineer to secure complex cloud services and infrastructure, with a focus on cloud security, infrastructure security, security information and event management (SIEM) technologies, DevOps, and software development experience. The role involves building and operating product security program capabilities, tools, and processes to keep pace with a rapidly changing security landscape, reduce security risk and enable organizational success.
Requirements
- Implement and operate Splunk Cloud Platform and Enterprise Security
- Implement and operate endpoint detection and response (EDR) and network detection & response (NDR) solutions
- Develop system configuration and hardening standards
- Define standards for secure configuration of application and infrastructure components
- Perform threat modeling, security design reviews, code reviews, and consultations with other staff
- Build and improve vulnerability management processes and tooling
- Perform, automate and streamline patching and vulnerability remediation activities
- Develop and deliver training on cloud security issues, best practices and internal policies
- Select, implement and manage cloud security tools including cloud security posture management (CSPM), network/host/container/IaC vulnerability scanners and configuration auditing
- Participate in manual pen testing of new + existing systems
- Perform and/or lead security investigation and incident response activities
- Participate in an on-call rotation with occasional after-hours paging to review carefully prioritized security detections
Benefits
- Health, Dental, and Vision Benefits
- Flexible PTO, Sick Time Prorated Based on Date of Hire, and All Federal Holidays (US Only) + 3 Days of Paid Volunteer Time
- Non-Commissioned Positions may be eligible to participate in the Annual Discretionary Bonus Plan
- FSA and Dependent Care Accounts + EAP, where applicable
- Educational Reimbursement
- 401k with Employer Match or Pension where applicable
- Pet Insurance (US Only)
- Parental Leave (US Only)
- Hybrid and Remote Work Model
