Senior Software Security Engineer, Triage & Incident Management – Slack

  • Individual Contributor
  • TSPA Members
  • US Remote
  • Experience level: 4+ years

Website Slack

This content was reproduced from the employer’s website on March 14, 2022. Please visit their website below for the most up-to-date information about this position.

Job Details

Slack enables people around the world to communicate and collaborate together, from the world’s largest public companies to the smallest of startups. We take performance and reliability very seriously. A taste of our scale:

  • During the week, our users spend over a billion minutes a day active in our product.

  • At peak usage, a million messages a minute passed through Slack.

  • Every day we see over 15 million simultaneously connected users

  • For millions of people, Slack is their primary communication tool for work and more, and they expect it to be exceptionally reliable and fast year-round.

About Us

Our Security team supports the unwritten fourth tenet of Slack’s mission: make people’s working lives more secure. We’re serious about protecting our infrastructure, operations, and most importantly, our customers’ data. We take a systemic approach to security, and strive to ensure we provide low friction high-impact security across everything we do.

As a member of the Slack Security Triage and Incident Management team, you are the first line of defense for all the people and parts that together make up Slack. You get out of bed each morning eager to be the front line in security, keeping our customers, employees, and tools safe. You’re excited to analyze new data, growing your skills in security to find adversaries and solve hard problems. Your work directly impacts the way millions of people, teams and businesses get things done.

Slack has a positive, diverse, and supportive culture—we look for people who are curious, inventive, and work to be a little better every single day. In our work together we aim to be smart, humble, hardworking and, above all, collaborative. If this sounds like a good fit for you, why not say hello?

What You Will Be Doing

  • Triage and track potential threats and alerts from multiple sources, and spot trends

  • Conduct and document the incident life cycle, managing and coordinating security incidents, engaging other teams, and providing other support

  • Create or propose automated tooling or streamlined processes to quickly solve  incidents and issues as they arise

  • Engage with other pillars of security, engineering, and customer experience to deliver support and solutions

  • Build filters, reports, dashboards, and alerts to surface potentially unwanted activity

  • Create and update existing playbooks and runbooks, working with multi-functional team members to maintain high-quality work products

  • Participate in enterprise-wide operations to hunt for adaptable and previously unknown threats

  • Develop creative innovative approaches to accelerate threat detection, responses, and remediation of security incidents in a global organization

  • Participate in each pillar of security through mentorship, training, and project opportunities

What You Should Have

  • 4+ years of experience* in a security or customer support role

  • An investigative attitude and an interest in fostering your career in security engineering or analysis

  • Flexibility in adapting previous experience to fit the needs and culture of our outstanding team

  • Experience analyzing events or incidents to triage the issue or find the root cause

  • Ability to translate inbound triage requests into useful, team-specific work items and repeatable runbooks

  • Can create simple Python, Go, Powershell or BASH scripts to automate cybersecurity functions and provide reports, where required. This includes appropriate API use into regular production services

  • User or customer support experience, working with users to understand the issues presented

  • Self-motivated with the ability to work independently

  • Willingness to learn new technologies, tools and skills

  • Broad exposure to security fields and understanding of models and principles behind core security concepts

*What’s more important to us than a number is the skills you’ve developed, regardless of the length of time it took to get where you are. Do you have 15+ years of experience? Great! Please apply. Have only two years but feel you meet the requirements above? We look forward to hearing from you.

To apply for this job please visit salesforce.wd1.myworkdayjobs.com.