What are the responsibilities and job description for the Senior Product Security Engineer position at ExtraHop?
At ExtraHop, we're on a mission to help organizations achieve complete visibility, real-time threat detection, and proactive security through cutting-edge network detection and response (NDR) technology. Our NDR product is a market leader, providing our customers with the ability to detect, investigate, and respond to threats faster than ever before.
We’re proud of the work we do and the recognition we’ve received, including our recent Gartner Peer Insights award, which reflects the trust and satisfaction our customers have in our solutions.
If you're passionate about innovation, dedicated to protecting digital infrastructures, and ready to make a real impact, we invite you to join our team and help us shape the future of cybersecurity.
Position Summary
Do you like securing complex cloud services and infrastructure? Want to be a part of a collaborative team that builds solutions that protect some of the biggest networks in the world? ExtraHop is seeking a Sr. Product Security Engineer, experienced with modern cloud system development and infrastructure-as-code practices to build and operate product security program capabilities, tools, and processes that allow us to keep pace with a rapidly changing security landscape, reduce security risk and enable organizational success.
We're looking for candidates with a mix of cloud security, infrastructure security, security information and event management (SIEM) technologies, DevOps, and software development experience, who enjoy working in a collaborative environment and taking direct action to identify, remediate and prevent vulnerabilities and security issues.
You must have experience securing cloud environments and modern computing infrastructure, deploying and operating SIEM tools, and strong familiarity with Infrastructure-as-Code and container technologies.
Key Responsibilities
- Implement and operate Splunk Cloud Platform and Enterprise Security, including setting up log ingestion from required source systems and ensuring correct parsing and categorization of log events for effective SIEM operations
- Implement and operate endpoint detection and response (EDR) and network detection & response (NDR) solutions
- Develop system configuration and hardening standards and coordinate with other teams to ensure compliance with those standards
- Define standards for secure configuration of application and infrastructure components
- Perform threat modeling, security design reviews, code reviews, and consultations with other staff
- Build and improve vulnerability management processes and tooling to support system owners to successfully remediate issues
- Perform, automate and streamline patching and vulnerability remediation activities
- Develop and deliver training on cloud security issues, best practices and internal policies
- Select, implement and manage cloud security tools including cloud security posture management (CSPM), network / host / container / IaC vulnerability scanners and configuration auditing
- Participate in manual pen testing of new existing systems
- Perform and / or lead security investigation and incident response activities
- Participate in an on-call rotation with occasional after-hours paging to review carefully prioritized security detections
Required Qualifications
Preferred Qualifications
The base salary for this position rages from , - , plus bonus benefits
