Security Operations Engineer- Leading Open Source Company- Elastic at Elastic () (allows remote)

Desired Skills and Experience

• Develop and enhance security focused tooling for the Elastic Cloud product and infrastructure
• Architect and maintain a SIEM infrastructure
• Be a part of a Security Incident Response Team
• Work closely with the SRE and Development team as well as third party auditors to ensure a smooth road to security compliance and adherence to regulations (SOC2, GDPR etc)
• Demonstrate and promote Security best practices
• Web Application Security: Have you performed automated and manual testing against a large codebase? Can you identify and exploit an SQL injection vulnerability without using sqlmap? Kali Linux for PenTest, Burp or OWASP for security testing? Are you able to exploit XSS in something more meaningful than a PoC alert?
• Network Security: Have you deployed perimeter scanners against a large network? Used Nessus / Snort / Bro and the likes and managed to get actionable information from them? Have you used Netflow to analyze traffic and used Wireshark to profile suspicious traffic? How is your TLS/VPN/L3-4 Cloud game?
• Linux Systems / Containers Security: Hardened a VM with SELinux / AppArmor? Tweaked cgroups, created Seccomp profiles? Have you profiled an application to get the minimum syscall / kernel capabilities gamut required for it to run?
• Compliance: Ever gotten through SOC2 or PCI? What about HIPAA?
• Incident Response & Security Monitoring: Do you have a experience working in a Security Operations Center? Have you dealt with security incidents that required quick mitigation and extensive root cause analysis?
• Identity and Access Management: Are you familiar with Authentication and Authorization protocols such as OIDC, OAuth and SAML? Deployed large scale LDAP / Kerberos?
• Development consulting : Are you familiar with security principles for Software Engineering? Can you help developers build security in throughout the Software Development Life Cycle?
• Desire to represent work in git, driven by a GitHub workflow through issues and pull requests and rigorous code reviews
• Love open source development, and have contributed to some project somewhere (doesn’t have to be ours), whether it’s mailing lists, patches, documentation, etc.
• Enjoy working remotely and the communication it requires
• Love a diverse environment,
• Working with men and women all over the world