We’re looking for problem solvers, innovators, and dreamers who are searching for anything but business as usual. Like us, you’re a high performer who’s an expert at your craft, constantly challenging the status quo. You value inclusivity and want to join a culture that empowers you to show up as your authentic self. You know that success hinges on commitment, that our differences make us stronger, and that the finish line is always sweeter when the whole team crosses together.
Alteryx, Inc. is looking for a Cyber Security Operations Engineer to support the effective and efficient operations of the Security Operations Center, including its next-gen artificial intelligence (AI) and machine learning (ML) cyber security technologies, threat report generation, incident monitoring/response, and vulnerability management. (This is a remote friendly opportunity)
Our engineers implement security best practices, policies, standards and guidance to ensure the safeguard of company data, infrastructure, and resources from internal and external threats. Team members are expected to perform their duties in accordance with all laws and regulations wherein the company operates, as well as the company’s policies and procedures.
ESSENTIAL DUTIES AND RESPONSIBILITIES:
Assist with the development of security controls in a multi-account, multi-region, highly available and highly automated multi-cloud environment to support application development, cloud computing, security, identity and access management, and IT infrastructure
Analyzes security vulnerability related information from a variety of tools, sources, and work with stakeholders to remediate them as per defined process
Leads and coordinate the response of information security incidents. Contributes to the technical investigation and root cause analysis.
Understand and contribute to the creation of security related system support documents, operational procedures, and standards
Build security automation for on-premises and cloud environments in the areas of enforcing controls and incident response process
Security oversight - configuration/policy review, change management, etc. and represent department in internal/external audits
Performs other duties and projects as assigned.
STANDARD DUTIES AND RESPONSIBILITIES:
A passion for building secure products. Experience implementing security controls and design patterns in AWS, Azure and Google Cloud
Comfortable with DevOps style tools like Ansible, Chef, Terraform, GitLab, Puppet, etc.
Experience implementing on-premise/cloud security and hardening, especially in a complex environment
Ability to perform smoke testing/sanity testing of pre-prod deployed environments
Detailed understanding of security fundamentals, including cryptography and the shared responsibility approach
Highly developed understanding of networking protocols, such as: TCP-IP, SSL/TLS, LDAP/S, IPsec, DNS
Understanding of different compliance frameworks and their implications in securing cloud environments
Network security experience (IDS, WAF, and Firewall, etc.)
Experience conducting analysis/investigation and containment of cybersecurity incidents.
Familiarity with security vulnerabilities, exploits, malware, and digital forensics
Exceptional communication skills with diverse audiences - Strong critical thinking and analytical skills
Demonstrated ability to identify risks associated with business processes, operations, information security programs and technology projects
ESSENTIAL KNOWLEDGE, SKILLS, AND ABILITIES:
Strong knowledge of how to effectively engineer and operate security technologies across the security operations stack.
Deep working knowledge of attack techniques, the cyber kill chain, and vulnerability management methodologies. An understanding of the incident response lifecycle, including containment, eradication, and recovery.
Extensive understanding of SOC processes and reporting metrics with the ability to discern patterns from large amounts of disparate information while remaining adaptable in rapidly changing situations and environments.
A comprehension of security methodologies, rules and regulations, system trust principals, and standards and frameworks, such as ISO, NIST, OWASP, SANS Top 20, PCI-DSS, SOX-404, CFPB, SSAE-18, and SOC2.
Ability to triage alerts, perform SOC tier 1, 2, 3 responsibilities as necessary, and understanding of ticket-driven workflows.
Intermediate skill in computer terminal and personal computer operation; Microsoft Office applications including but not limited to: Word, Excel, PowerPoint and Outlook.
Effective organizational and time management skills. Ability to work with little to no supervision while performing duties.
Intermediate scripting knowledge in Python, PowerShell, or similar languages. Experience with Alteryx Designer / Server a plus.
EDUCATION, EXPERIENCE AND/OR LICENSES:
Bachelor’s Degree in Cyber Security, Information Technology, or related field preferred and a minimum of five (5+) years’ progressive information security experience is preferred.
Experience working in a Security Operation Center preferred.
Certified Information Systems Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified Ethical Hacker (CEH), GIAC Security Essentials Certification (GSEC), GIAC Certified Incident Handler (GCIH), Security+, or other related certifications preferred.
Alteryx is committed to fair and equitable compensation practices. The salary range for this role in Broomfield, CO is $88,400 to $150,300. This position is also remote-friendly and, as such, compensation will ultimately be in line with the location in which the position is filled. Final compensation for this role will be determined by various factors such as a candidate’s relevant work experience, skills, certifications, and geographic location. This role is eligible for variable compensation including bonus and stock grants.
Find yourself checking a lot of these boxes but doubting whether you should apply? At Alteryx, we support a growth mindset for our associates through all stages of their careers. If you meet some of the requirements and you share our values, we encourage you to apply. As part of our ongoing commitment to a diverse, equitable, and inclusive workplace, we’re invested in building teams with a wide variety of backgrounds, identities, and experiences.
Benefits & Perks:
Alteryx has amazing benefits for all Associates which can be viewed here.