Principal Security Engineer - Incident Response at JumpCloud

| Remote
Sorry, this job was removed at 11:11 a.m. (MST) on Wednesday, September 15, 2021
Find out who's hiring in Colorado.
See all Developer + Engineer jobs in Colorado
All roles at JumpCloud are Remote in the U.S. unless otherwise specified in the Job Description.

About JumpCloud
Do you enjoy solving challenging problems using the latest technologies within a great team? Is knowing your work will be highly visible and mission critical a key component for the next step in your career? At JumpCloud, we’re looking for best-in-class talent to help define the future of modern identity and device management from the ground up.

JumpCloud’s mission is to Make Work Happen®, providing simple, secure access to corporate technology resources from any device, or any location. The JumpCloud Directory Platform gives IT, security operations, and DevOps a single, cloud-based solution to control and manage employee identities, their devices, and apply conditional access controls based on Zero Trust principals. JumpCloud has a global user base of more than 100,000 organizations, with over 4,000 customers including Cars.com, Grab, ClassPass, Uplight, Beyond Finance and Foursquare. JumpCloud is backed by BlackRock, General Atlantic, OpenView, and Foundry Group.

JumpCloud is looking for a Principal Security Engineer focusing on Incident Response to engineer, triage, respond and mitigate attacks across JumpCloud products and services. In this position, you will be a part of a flexible team responsible for handling security operations. As such, you'll need to have years of practical security experience in DFIR and knowledge of best practices for incident handling, security operations, detecting, and responding to attacks. You'll be someone JumpCloudians across the company depend on and trust to respond quickly and effectively in a crunch. Your outstanding communication and collaboration skills are essential to collaborating with diverse stakeholders. Most importantly, you will become a critical member of the team responsible for ensuring visibility across JumpCloud products and services and keeping our customers and service partners safe. About the Role: The Information Security Incident Response Lead is responsible for the management, operation, and direction of the incident response program, related process development, and improvement activities, including security breach simulation exercises. This individual will develop JumpCloud's Incident Response program and train and mentor others to perform and manage daily tasks associated with cyber incidents, investigations, threat intelligence, threat hunting, and simulation exercises as part of Security Operations. This individual will also drive new solutions, deployments, and procedures for gathering, handling, searching, and retrieving centralized log data, digital and physical evidence concerning incidents. Ensure that forensically sound practices are documented. As a SaaS provider, this role also should provide guidance and assistance to JumpCloud GRC and Vulnerability Management programs, as well as product security. This individual will coordinate processes and collaborate with Security Engineering, and other business stakeholders across the company, in daily security operations, as well as ensuring process continuity, disaster recovery, and business continuity in planned simulation exercises to demonstrate cyber resilience in the event of a cyber-attack or breach. 


The company's leadership team, and a cross-functional team of skilled engineers from various perspectives, all working with a singular focus of maintaining our customer's trust. You'll be exposed to the reality of how JumpCloud functions on a technical and process level and will build a comprehensive base of knowledge around how it all works together. In doing so, you'll be playing a role in keeping JumpCloud secure and compliant, bringing security to our company's forefront.

Responsibilities/Duties:

  • Execute, develop and document incident handling guides and processes for JumpCloud
  • Lead the Security Incident Response Team (SIRT) to employ strategy, standards, processes, and technology to detect, respond and recover from security incidents and to limit the impact of any such occurrence
  • Prioritizes events using existing tools to correlate data for the purpose of reducing false positives and detecting threats
  • Analyze and tune security alerts and interpret events, as well as create new signals based on signatures and behavioral activities
  • respond to security incidents, lead investigations, and perform forensics on IT systems as necessary. Guide/lead mitigation strategies for identified vulnerabilities and threats Design, automate and maintain a portfolio of security alerts, automated actions, and escalation workflows supporting a high-performing 24/7 incident response capability
  • Conduct threat hunting activities, anticipate future threats and maintain forward-thinking strategies for tools/technology/processes that combat sophisticated threat actors
  • Assist with implementation of counter-measures or mitigating controls Develop and maintain Incident Response capabilities in public cloud environments Prepare incident reports of analysis methodology and results. Recognize potential, successful, and unsuccessful intrusion attempts and compromises thorough reviews and analyses of relevant event detail and summary information
  • Partner with key stakeholders and communicate effectively to continuously improve the feedback loop of preparation, identification, analysis, containment, and post mortem activities
  • Develop monthly reporting dashboards and metrics on incidents and response capabilities Prepare executive summaries and conduct briefings on significant investigations. Developing the security event simulation program and conduct security event tabletop exercises

Qualifications And Skills

  • Expertise in building and operating security information/event management systems (SIEM), centralized logging, and enrichment solutions(Endpoint protection/detection, Network telemetry data, ELK, Splunk, Snowflake, AWS services, HR systems, codebase infrastructure, build infrastructure).Practical experience working with cloud technologies; ability to build and deploy a solution using Terraform.
  • Experience with building and deploying solutions (Puppet / Chef / Ansible, Terraform, Jenkins)Competency in Linux, windows; Ability to automate workflows via scripting languages: Python, Ruby, JavaScript.
  • Superb communication and leadership capacity; ability to partner effectively with diverse company stakeholders.
  • Active and current knowledge of campaign behavior, Cyber Crime, IoCs, TTPs, and current threats
  • Competency in integrating Threat data, enrichments, for higher-value outcomes and behavioral situational awareness.

Personal Characteristics

  • Views security as an enabler, not an inhibitor to innovation.
  • Ownership and Accountability
  • Autonomy
  • High Level of Integrity
  • Clear Communication
  • Creative Problem Solver
  • Passionate about Security

In accordance with the Colorado Equal Pay for Equal Work Act, the approximate compensation range for this role is $180,000 to 220,000 including base salary and any related bonuses or commissions. JumpCloud provides comprehensive benefits, including medical, dental and vision insurance, short and long term disability, life insurance and a 401k savings plan. We have an unlimited vacation policy. 

Where you’ll be working 
All our roles are remote in the U.S. unless otherwise specified. Our Headquarters is in the Denver/Boulder, CO area. Once we reopen our offices you will have the opportunity to remain fully remote (in the U.S.), work from one of our office locations (CO only currently) or flex your time. 

Why JumpCloud?  
If you thrive working in a fast, SaaS-based environment and you are passionate about solving challenging technical problems, we look forward to hearing from you! JumpCloud is an incredible place to share and grow your expertise! You’ll work with amazing talent across each department who are passionate about our mission. We’re out of the box thinkers, so your unique ideas and approaches for conceiving a product and/or feature will be welcome. You’ll have a voice in the organization as you work with a seasoned executive team, a supportive board and in a proven market that our customers are excited about.

Please submit your résumé and brief explanation about yourself and why you would be a good fit for JumpCloud. Please note JumpCloud is not accepting third party resumes at this time.

We're an equal opportunity employer. All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran or disability status. 

Read Full Job Description
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

Technology we use

  • Engineering
  • Product
  • Sales & Marketing
    • C++Languages
    • GolangLanguages
    • JavaLanguages
    • JavascriptLanguages
    • PythonLanguages
    • PowerShellLanguages
    • Node.jsFrameworks
    • VueFrameworks
    • MongoDBDatabases
    • PostgreSQLDatabases
    • Google AnalyticsAnalytics
    • WordpressCMS
    • SalesforceCRM
    • MarketoLead Gen

Location

We are located in the business park adjacent to the Home Depot off of McCaslin Boulevard in Louisville!

An Insider's view of JumpCloud

What’s the vibe like in the office?

A key trait for us is having an open, positive mind. We believe that taking the road less travelled - or at least exercising that path - will create new, different, and interesting ideas. We ask our teams to always consider the outside-of-the-box solution to a problem and encourage them to try those creative ideas.

Aaron

VP of People

What projects are you most excited about?

Growth! JumpCloud is actively growing in Denver/Boulder and across the U.S. Attracting and engaging a diverse group of talent as we continue to expand is my main focus. JumpCloud has a strong culture of learning, so we're always looking at what we're doing and adjusting to make it even better.

Katy

Manager, People Attraction

What makes someone successful on your team?

My team members feel empowered to create, design and execute with a lot of freedom at JumpCloud. This enables them to take an active role in their career development and the development of other team members at JumpCloud.

Courtney

Manager, Learning and Development

How do you make yourself accessible to the rest of the team?

I'm available pretty much anytime via email, Slack, phone, in person. More than the communication vehicles and time, I really like to dig in on projects with our teams. By working on important issues together as just another voice or hand to help, I think that helps the team feel that I'm accessible to them and there to help.

Rajat

CEO

How do you make yourself accessible to the rest of the team?

One of the core roles in our engineering group is called pathfinder. They are constantly looking at different areas of our product and future plans and coming up with innovative new ways to achieve these. These engineers lead sessions with cross-functional teams on how to leverage their innovations for competitive advantage in the marketplace.

Rajat

CEO

What are JumpCloud Perks + Benefits

JumpCloud Benefits Overview

JumpCloud offers

Culture
Friends outside of work
Eat lunch together
Daily sync
Open door policy
Team owned deliverables
Team based strategic planning
Group brainstorming sessions
Pair programming
Open office floor plan
Diversity
Someone's primary function is managing the company’s diversity and inclusion initiatives
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
JumpCloud employees can contribute up to $2750.00 annually to their FSA.
Disability Insurance
Dental Benefits
Vision Benefits
Health Insurance Benefits
JumpCloud's health insurance policy covers up to ___% of out of pocket expenses.
Life Insurance
Wellness Programs
Mental Health Benefits
Retirement & Stock Options Benefits
401(K)
Company Equity
Child Care & Parental Leave Benefits
Generous Parental Leave
Flexible Work Schedule
JumpCloud provides employees with a flexible work schedule that includes ___.
Remote Work Program
Family Medical Leave
Return-to-work program post parental leave
Company sponsored family events
JumpCloud sponsors family oriented events Annually.
Vacation & Time Off Benefits
Unlimited Vacation Policy
Generous PTO
JumpCloud offers an unlimited PTO program to our team members.
Paid Holidays
Perks & Discounts
Beer on Tap
Casual Dress
Commuter Benefits
Company Outings
JumpCloud hosts company outings Monthly.
Happy Hours
Parking
Professional Development Benefits
Job Training & Conferences
Diversity Program
Lunch and learns
Cross functional training encouraged
Promote from within
More Jobs at JumpCloud63 open jobs
All Jobs
Finance
Data + Analytics
Design + UX
Dev + Engineer
HR + Recruiting
Marketing
Operations
Product
Project Mgmt
Sales
Content
Developer
new
Remote
Operations
new
Remote
Content
new
Remote
Sales
new
Denver
HR + Recruiting
new
Remote
HR + Recruiting
new
Remote
Operations
new
Remote
Sales
new
Remote
Developer
new
Remote
Sales
new
Remote
Developer
new
Denver
Marketing
new
Remote
Data + Analytics
new
Remote
Finance
new
Remote
Developer
new
Remote
Design + UX
new
Remote
Data + Analytics
new
Remote
Data + Analytics
new
Denver
Developer
new
Remote
Developer
new
Remote
HR + Recruiting
new
Remote
HR + Recruiting
new
Denver
Developer
new
Remote
Developer
new
Remote
Sales
new
Remote
Marketing
new
Denver
HR + Recruiting
new
Remote
HR + Recruiting
new
Denver
Data + Analytics
new
Remote
Finance
new
Remote
Developer
new
Remote
Project Mgmt
new
Remote
Data + Analytics
new
Remote
Developer
new
Remote
Developer
new
Remote
Developer
new
Denver
Sales
new
Remote
Sales
new
Remote