SendGrid is and always will be an engineering company. We hire people with a wide range of technical skills and expertise who are interested in solving large-scale development problems, like how to deliver billions of transactional emails per month in a secure and scalable way.
SendGrid's InfoSec team is seeking a technical resource with a strong background in software development and a deep knowledge of application security.
What You'll Do
You will manage our vulnerability management program, and prioritize and assist Operations and Engineering with the remediation of identified vulnerabilities. You will build tools to monitor log, flow and IDS data to identify indicators of compromise. You will work with Operations to ensure that our infrastructure security controls are effective. You will respond to security incidents. You will implement security tools and functionality, and build cool things.
About You
- Experience performing incident response in a distributed, high performance environment.
- Able to perform forensic investigation of compromised applications, systems and platforms and quickly determine root cause.
- Experience performing intrusion detection: monitoring log, flow and IDS data to identify indicators of compromise.
- Experience operating a vulnerability management program at both the infrastructure and application layer. Able to tune scanners to maximize effectiveness and quickly identify issues requiring immediate remediation. Capable of working with other teams to effectively communicate impact and provide guidance regarding remediation of vulnerabilities.
- Familiarity with Git
- Competent with one or more scripting languages (Bash, Python, etc.)
- Able to automate tasks to provide security at scale
- Willing to be part of the on-call rotation to respond to security issues
- Passionate about security and operations
- Quick to grok emerging threats and new technologies