Natera, Inc.
Senior Cybersecurity Engineer, Incident Response & SOC
Natera, Inc., San Carlos, California, United States, 94071
Overview
POSITION SUMMARY: The Senior Cybersecurity Engineer, Incident Response & SOC is a hands-on leader who is accountable and responsible for continuous monitoring and appropriate response to all Information Security vulnerabilities and incidents (potential & actual) at Natera including detection, response and recovery from these Information Security Incidents. Responsibilities
Define, scale and streamline InfoSec Incident response and vulnerability management capabilities for improved effectiveness and efficiency. Drive towards continuous improvement in proactive management of vulnerabilities and potential security incidents including vulnerability scanning, threat hunting, identification and acting on anomalous activity based on improvement in processes, tools and techniques. Lead and perform end-to-end incident response for all types of security events including collaboration with external SOC and law enforcement as needed. Manage the day-to-day operation of the vulnerability management program, including vulnerability scanning, testing, reporting and work with stakeholders as necessary to develop vulnerability remediation strategies. Perform detailed analysis and risk evaluation of vulnerabilities, attack vectors, attack surfaces and detection avoidance tactics. Constantly strive to improve earlier detection, response, and recovery operations by conducting a lesson learned exercise and communicate with Senior Management in IT and business. Ensure appropriate evidence handling and chain of custody for security incidents. Develop and enhance incident and vulnerability management dashboards in SIEM and other tools to report on Vulnerability Risk and Security Incidents on an ongoing basis. Monitor external event sources for emerging vulnerabilities, threats and attack scenarios and influence/assist other Information Security, Engineering and IT teams to build appropriate controls. Collaborate with external Threat Intelligence sources to stay ahead of threats before they can potentially impact Natera. Establish and maintain excellent working relationships with the broader IT organization and business units. Qualifications
B.S. in Computer Science or related field, or equivalent experience. Minimum of 5 years of related experience, including a minimum of 3+ years of specific experience in large enterprise information security operations technologies, tools and processes. Knowledge, Skills, and Abilities
Excellent written and verbal communication skills; the ability to convey security concepts to non-technical audiences (e.g. senior and executive management, internal customers). Ability to act as a Business Systems Analyst and clearly articulate and elicit business requirements and use-cases in a technology-agnostic manner. Recent experience with AWS and Google security stacks. Knowledge of operating systems (UNIX/Linux, macOS and Windows) and database management systems (Oracle, SQL Server, etc.). Experience with Security Event Information Management (SIEM) and Log Aggregation systems. Experience with Security Vulnerability Management tools. Experience with virtualization and cloud-based (AWS, Azure) networks. Capable of performing network forensics and reading packet captures. Experience with Open Source and COTS Security Monitoring & Incident Response Tools. Hands-on capability in AI, Agent Based SecOps, and scripting/automation to build and run next-gen SecOps and IR. What We Offer
Competitive Benefits - Medical, dental, vision, life and disability plans for eligible employees and dependents. Free testing for employees and their immediate families, fertility care benefits, pregnancy and baby bonding leave, 401k benefits, commuter benefits and more. Employee referral program. Equal Opportunity
Natera is an Equal Opportunity Employer. We are committed to a diverse and inclusive workplace environment and welcome people of different backgrounds, experiences, abilities and perspectives. All qualified applicants will be considered without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, age, veteran status, disability or any other legally protected status. We also consider qualified applicants regardless of criminal histories, consistent with applicable laws.
#J-18808-Ljbffr
POSITION SUMMARY: The Senior Cybersecurity Engineer, Incident Response & SOC is a hands-on leader who is accountable and responsible for continuous monitoring and appropriate response to all Information Security vulnerabilities and incidents (potential & actual) at Natera including detection, response and recovery from these Information Security Incidents. Responsibilities
Define, scale and streamline InfoSec Incident response and vulnerability management capabilities for improved effectiveness and efficiency. Drive towards continuous improvement in proactive management of vulnerabilities and potential security incidents including vulnerability scanning, threat hunting, identification and acting on anomalous activity based on improvement in processes, tools and techniques. Lead and perform end-to-end incident response for all types of security events including collaboration with external SOC and law enforcement as needed. Manage the day-to-day operation of the vulnerability management program, including vulnerability scanning, testing, reporting and work with stakeholders as necessary to develop vulnerability remediation strategies. Perform detailed analysis and risk evaluation of vulnerabilities, attack vectors, attack surfaces and detection avoidance tactics. Constantly strive to improve earlier detection, response, and recovery operations by conducting a lesson learned exercise and communicate with Senior Management in IT and business. Ensure appropriate evidence handling and chain of custody for security incidents. Develop and enhance incident and vulnerability management dashboards in SIEM and other tools to report on Vulnerability Risk and Security Incidents on an ongoing basis. Monitor external event sources for emerging vulnerabilities, threats and attack scenarios and influence/assist other Information Security, Engineering and IT teams to build appropriate controls. Collaborate with external Threat Intelligence sources to stay ahead of threats before they can potentially impact Natera. Establish and maintain excellent working relationships with the broader IT organization and business units. Qualifications
B.S. in Computer Science or related field, or equivalent experience. Minimum of 5 years of related experience, including a minimum of 3+ years of specific experience in large enterprise information security operations technologies, tools and processes. Knowledge, Skills, and Abilities
Excellent written and verbal communication skills; the ability to convey security concepts to non-technical audiences (e.g. senior and executive management, internal customers). Ability to act as a Business Systems Analyst and clearly articulate and elicit business requirements and use-cases in a technology-agnostic manner. Recent experience with AWS and Google security stacks. Knowledge of operating systems (UNIX/Linux, macOS and Windows) and database management systems (Oracle, SQL Server, etc.). Experience with Security Event Information Management (SIEM) and Log Aggregation systems. Experience with Security Vulnerability Management tools. Experience with virtualization and cloud-based (AWS, Azure) networks. Capable of performing network forensics and reading packet captures. Experience with Open Source and COTS Security Monitoring & Incident Response Tools. Hands-on capability in AI, Agent Based SecOps, and scripting/automation to build and run next-gen SecOps and IR. What We Offer
Competitive Benefits - Medical, dental, vision, life and disability plans for eligible employees and dependents. Free testing for employees and their immediate families, fertility care benefits, pregnancy and baby bonding leave, 401k benefits, commuter benefits and more. Employee referral program. Equal Opportunity
Natera is an Equal Opportunity Employer. We are committed to a diverse and inclusive workplace environment and welcome people of different backgrounds, experiences, abilities and perspectives. All qualified applicants will be considered without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, age, veteran status, disability or any other legally protected status. We also consider qualified applicants regardless of criminal histories, consistent with applicable laws.
#J-18808-Ljbffr