Security Data Engineer

Posted 25 April 2022
Salary Competitive
LocationSan Francisco
DisciplineCyber Security
Contact NameMary Gibson
Remote working Remote

Job description

As a Security Data Engineer at Benchling you’ll be joining a team responsible for building a best-in-class security program from the ground up. Our focus is on providing value to the organization by emphasizing real world security and embracing automation to keep up with the company as we experience hypergrowth. We’re looking for engineers who are excited to apply their expertise to our mission of securing some of society's most sensitive data.

- Designing, constructing, testing and maintaining a robust, reliable, and scalable security data pipeline infrastructure.
- Partnering with Security Incident Response Engineers on threat detection engineering (e.g alerts, searches, reports, etc.).
- Partnering with the multiple engineering teams on internal and customer facing security and privacy initiatives, ensuring that security data accessibility, quality, and reliability are taken into account.
- Employing an array of technological tools to integrate with 3rd-party data systems.
- Partnering with Security Engineering, Infrastructure Engineering, and Software Engineering on security feature roadmaps and security architecture.
- Researching new detection mechanisms for attack vectors and techniques relevant to our space and presenting findings to both internal and external audiences.
- Developing set processes for data mining, data modeling, and data production.
- Partnering with Security Incident Response Engineers during incident response and investigations.
- Evaluating external tooling, developing new automation and tooling.

- 5-10 years of working on backend infrastructure/data systems or with
application/infrastructure logging pipelines
- 4+ years of those years of experience in Security Engineering or related experience
- Experience writing code, designing systems and data workflows, optimizing data processing algorithms, and systems to support security data analytics.
- In-Depth knowledge of AWS cloud infrastructure and its associated security suites (e.g., IAM, GuardDuty, Inspector, CloudTrail, CloudWatch, etc)
- Familiarity with modern infrastructure technologies such as: Docker, Kubernetes, Terraform, Cloudformation, Kinesis.
- Relevant development experience in at least one scripting language, preferably Python
- Strong communicator with both words and data - you understand what it takes to go from raw Security data to something a human understands
- Comfortable with complexity in the short term but can build towards simplicity in the long term
- Detection and Response experience (Detection Engineering, Digital Forensics, Incident Response, and/or Threat Intelligence)
- Technical leadership skills (you enjoy being a tech lead, mentoring technologists, evangelizing security and privacy)
- Plus: Contributions to the security community via talks, papers, blogs, projects, CVEs, etc.