Natera, Inc.
Senior Cybersecurity Engineer, Incident Response & SOC
Natera, Inc., San Carlos, California, United States, 94071
Senior Cybersecurity Engineer, Incident Response & SOC
POSITION SUMMARY:
The Senior Cybersecurity Engineer, Incident Response & SOC is a hands-on leader who is accountable and responsible for continuous monitoring and appropriate response to all Information Security vulnerabilities and incidents (potential & actual) at Natera including detection, response and recovery from these Information Security Incidents. Responsibilities
Define, scale and streamline InfoSec Incident response and vulnerability management capabilities for improved effectiveness and efficiency. Drive towards continuous improvement in proactive management of vulnerabilities and potential security incidents including vulnerability scanning, threat hunting, identification and acting on anomalous activity based on improvement in processes, tools and techniques. Lead and perform end-to-end incident response for all types of security events including collaboration with external SOC and law enforcement as needed. Manage the day-to-day operation of the vulnerability management program, including vulnerability scanning, testing, reporting and work with stakeholders as necessary to develop vulnerability remediation strategies. Perform detailed analysis and risk evaluation of vulnerabilities, attack vectors, attack surfaces and detection avoidance tactics. Constantly strive to improve earlier detection, response, and recovery operations by conducting a lesson learned exercise and communicate with Senior Management in IT and business. Ensure appropriate evidence handling and chain of custody for security incidents. Develop and enhance incident and vulnerability management dashboards in SIEM and other tools to report on Vulnerability Risk and Security Incidents. Monitor external event sources for emerging vulnerabilities, threats and attack scenarios and influence/assist other IT teams to build appropriate controls. Collaborate with external Threat Intelligence sources to stay ahead of threats. Establish and maintain excellent relationships with the broader IT organization and business units. Qualifications
B.S. in Computer Science or related field, or equivalent experience. Minimum of 5 years of related experience, including 3+ years in large enterprise information security operations technologies, tools and processes. Knowledge, Skills, and Abilities
Excellent written and verbal communication; ability to convey security concepts to non-technical audiences. Ability to act as a Business Systems Analyst and articulate business requirements in a technology-agnostic manner. Experience with AWS and Google security stacks. Knowledge of UNIX/Linux, MacOS, Windows; database systems (Oracle, SQL Server). Experience with SIEM and log aggregation systems, vulnerability management tools, and virtualization/cloud networks (AWS, Azure). Ability to perform network forensics and read packet captures. Experience with Open Source and COTS security monitoring and IR tools. Hands-on capability in AI, agent-based SecOps, and scripting/automation. Compensation
Pay range: $135,800 - $190,000 USD; actual compensation based on key factors including skill set, experience, certifications, and location. Our Opportunity
Natera is a global leader in cfDNA testing focused on oncology, women’s health, and organ health. Our mission is to advance personalized genetic testing and diagnostics. What We Offer
Competitive benefits including medical, dental, vision, life and disability plans; fertility care, pregnancy and baby bonding leave, 401k, commuter benefits, and an employee referral program. Equal Opportunity Employer; committed to a diverse and inclusive workplace. EEO and Privacy
All qualified applicants are encouraged to apply without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, age, veteran status, disability or any other legally protected status. California residents information notice included. For security, communications originate from @natera.com domains; Natera will not request personal information via text or non-official channels.
#J-18808-Ljbffr
POSITION SUMMARY:
The Senior Cybersecurity Engineer, Incident Response & SOC is a hands-on leader who is accountable and responsible for continuous monitoring and appropriate response to all Information Security vulnerabilities and incidents (potential & actual) at Natera including detection, response and recovery from these Information Security Incidents. Responsibilities
Define, scale and streamline InfoSec Incident response and vulnerability management capabilities for improved effectiveness and efficiency. Drive towards continuous improvement in proactive management of vulnerabilities and potential security incidents including vulnerability scanning, threat hunting, identification and acting on anomalous activity based on improvement in processes, tools and techniques. Lead and perform end-to-end incident response for all types of security events including collaboration with external SOC and law enforcement as needed. Manage the day-to-day operation of the vulnerability management program, including vulnerability scanning, testing, reporting and work with stakeholders as necessary to develop vulnerability remediation strategies. Perform detailed analysis and risk evaluation of vulnerabilities, attack vectors, attack surfaces and detection avoidance tactics. Constantly strive to improve earlier detection, response, and recovery operations by conducting a lesson learned exercise and communicate with Senior Management in IT and business. Ensure appropriate evidence handling and chain of custody for security incidents. Develop and enhance incident and vulnerability management dashboards in SIEM and other tools to report on Vulnerability Risk and Security Incidents. Monitor external event sources for emerging vulnerabilities, threats and attack scenarios and influence/assist other IT teams to build appropriate controls. Collaborate with external Threat Intelligence sources to stay ahead of threats. Establish and maintain excellent relationships with the broader IT organization and business units. Qualifications
B.S. in Computer Science or related field, or equivalent experience. Minimum of 5 years of related experience, including 3+ years in large enterprise information security operations technologies, tools and processes. Knowledge, Skills, and Abilities
Excellent written and verbal communication; ability to convey security concepts to non-technical audiences. Ability to act as a Business Systems Analyst and articulate business requirements in a technology-agnostic manner. Experience with AWS and Google security stacks. Knowledge of UNIX/Linux, MacOS, Windows; database systems (Oracle, SQL Server). Experience with SIEM and log aggregation systems, vulnerability management tools, and virtualization/cloud networks (AWS, Azure). Ability to perform network forensics and read packet captures. Experience with Open Source and COTS security monitoring and IR tools. Hands-on capability in AI, agent-based SecOps, and scripting/automation. Compensation
Pay range: $135,800 - $190,000 USD; actual compensation based on key factors including skill set, experience, certifications, and location. Our Opportunity
Natera is a global leader in cfDNA testing focused on oncology, women’s health, and organ health. Our mission is to advance personalized genetic testing and diagnostics. What We Offer
Competitive benefits including medical, dental, vision, life and disability plans; fertility care, pregnancy and baby bonding leave, 401k, commuter benefits, and an employee referral program. Equal Opportunity Employer; committed to a diverse and inclusive workplace. EEO and Privacy
All qualified applicants are encouraged to apply without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, age, veteran status, disability or any other legally protected status. California residents information notice included. For security, communications originate from @natera.com domains; Natera will not request personal information via text or non-official channels.
#J-18808-Ljbffr