O pozici
At Medallia, the Security Operations team increases Medallia’s long-term value by building enterprise-grade, best-in-class security to detect indicators of compromise and security malfeasance, as well as leading Medallia’s security incident response and investigative capabilities across the entire organization. We are passionate about security, threat hunting, automation, and rapid iteration, and love creating pragmatic solutions to challenging problems.
We work closely with our Red-Team and perform Tabletop exercises that allow us to build company-wide muscle memory for responding to incidents.
As a next-generation Security Operations team, DevSecOps methodology is our focus, and our engineers utilize best-in-class tools to deliver robust security capabilities across our multi-cloud platform.
We are looking for a Security Engineering, Senior that shares our passion and be able to work closely with our global engineering teams and ensure that we have best-in-class detection and response capabilities deployed throughout our platform.
Co budeš dělat
- Lead the strategy and architecture for Medallia’s detection and response platforms (SIEM, SOAR, EDR, Cloud Security), ensuring scalability, coverage, and alignment with threat models and business risk.
- Design and implement high-fidelity, high-quality detections using advanced pattern matching, ML-supported analytics, statistical modeling, behavior profiling, and attacker TTP mapping (MITRE ATT&CK).
- Act as a lead incident commander or technical lead during complex, high-severity security incidents, driving root cause analysis, containment, remediation, and executive-level communication.
- Build repeatable playbooks, automation modules, and decision frameworks that improve response velocity and reduce analyst load.
- Architect and implement large-scale automation and orchestration to eliminate manual toil within Security Operations.
- Lead the design of security data pipelines, enrichment workflows, and automated response systems leveraged by SOC and IR teams.
- Lead in building and maintaining security platforms using IaC methodologies (Terraform, Packer, Kubernetes, GitOps, etc.).
- Develop high-quality automation and tooling using languages such as Python, Go, and Bash.
Koho hledáme
- Extensive experience (6 or more years) in Security Operations, Security Detection, Incident Response, and Security Automation at scale.
- Deep knowledge of Cloud providers, AWS, GCP, Azure, OCI especially hands-on experience on Cloud Security Posture Management: IAM Roles, Policies, etc.
- Demonstrated ability to design and deliver cross-functional security operations initiatives.
- Prior experience working with open-source tools like Terraform, Packer, GIT and Jenkins.
- Strong communication skills with the ability to present to technical and non-technical audiences.
Benefity
- At Medallia, we celebrate diversity and recognize the value it brings to our customers and employees. Medallia is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age (40 and over), disability, genetic information, veteran status or military service,
