MongoDB
Senior InfoSec Engineer, Red Team New York City; San Francisco; Seattle; United
MongoDB, San Francisco, California, United States, 94199
MongoDB’s mission is to empower innovators to create, transform, and disrupt industries by unleashing the power of software and data. We enable organizations of all sizes to easily build, scale, and run modern applications by helping them modernize legacy workloads, embrace innovation, and unleash AI. Our industry-leading developer data platform, MongoDB Atlas, is the only globally distributed, multi-cloud database and is available in more than 115 regions across AWS, Google Cloud, and Microsoft Azure. Atlas allows customers to build and run applications anywhere—on premises, or across cloud providers. With offices worldwide and over 175,000 new developers signing up to use MongoDB every month, it’s no wonder that leading organizations, like Samsung and Toyota, trust MongoDB to build next-generation, AI-powered applications.
The MongoDB Information Security team is seeking a motivated Information Security Engineer to help build our Red Team. The ideal candidate will have a solid background in offensive security, including systems, networks, applications, and cloud environments.
This is an exciting opportunity to be a founding member of our Red Team, part of our Security Operations organization. This team will be responsible for continuously evaluating, testing, and improving our security controls across the MongoDB enterprise, including the Atlas service, by simulating adversary operations and attempting to defeat or circumvent security controls. Collaboration and communication skills are key for this position, as well as deep respect for the security, durability, and availability of our customers’ data.
This role will be based remotely in the United States.
We are looking for someone with the following skills
Knowledge of cloud computing platforms (e.g., AWS, Google Cloud Platform, Azure) and operating systems (Linux, Windows, macOS) Understanding of the components and potential security weaknesses of large-scale SaaS applications and modern distributed systems architectures Experience working closely with defenders to identify and fix problems and develop innovative solutions to detecting potential security issues Love to learn; you are motivated to learn about security and tinkering Experience communicating with technical and non-technical individuals Offensive Security Certified Professional(OSCP) certification, or equivalent Position Expectations:
Develop security tests and assessments based on a solid understanding of MongoDB’s technical environment and services architecture Create realistic tabletop exercises based on an up-to-date understanding of threats and vulnerabilities relevant to the MongoDB business Continuously test the security features of MongoDB Atlas in order to validate controls and recommend enhancements Collaborate closely with detection engineering, vulnerability management, and incident response in order to operationalize the benefits of red team discoveries Write detailed summaries and reports for both technical and non-technical / executive audiences MongoDB is committed to providing any necessary accommodations for individuals with disabilities within our application and interview process. To request an accommodation due to a disability, please inform your recruiter. MongoDB, Inc. provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type and makes all hiring decisions without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. MongoDB’s base salary range for this role in the U.S. is:
#J-18808-Ljbffr
Knowledge of cloud computing platforms (e.g., AWS, Google Cloud Platform, Azure) and operating systems (Linux, Windows, macOS) Understanding of the components and potential security weaknesses of large-scale SaaS applications and modern distributed systems architectures Experience working closely with defenders to identify and fix problems and develop innovative solutions to detecting potential security issues Love to learn; you are motivated to learn about security and tinkering Experience communicating with technical and non-technical individuals Offensive Security Certified Professional(OSCP) certification, or equivalent Position Expectations:
Develop security tests and assessments based on a solid understanding of MongoDB’s technical environment and services architecture Create realistic tabletop exercises based on an up-to-date understanding of threats and vulnerabilities relevant to the MongoDB business Continuously test the security features of MongoDB Atlas in order to validate controls and recommend enhancements Collaborate closely with detection engineering, vulnerability management, and incident response in order to operationalize the benefits of red team discoveries Write detailed summaries and reports for both technical and non-technical / executive audiences MongoDB is committed to providing any necessary accommodations for individuals with disabilities within our application and interview process. To request an accommodation due to a disability, please inform your recruiter. MongoDB, Inc. provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type and makes all hiring decisions without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. MongoDB’s base salary range for this role in the U.S. is:
#J-18808-Ljbffr