RemoteLeaf Logo
Log in Sign up

Staff Security & Compliance Engineer

1 hour, 24 minutes ago
Australia
Lead
Security Engineer
DevOps and Infrastructure
AWS Azure Bash GCP Node.js OAuth OpenID Connect Python Ruby SAML SIEM
Apply Now
Cribl

Cribl

Cribl provides a unified data management platform specifically designed for IT and security data, enabling users to explore, collect, process, and access their data at scale while offering enhanced control and flexibility in managing their data workflows.

IT Services
251-1K
Founded 2018
$402M raised
View All Jobs 51

Description

  • Monitor security events and alerts across MSSP, SIEM, AI, and CSPM tooling to identify and triage potential threats.
  • Design, develop, implement, and maintain high-fidelity detection rules and alerts across SIEM and other security platforms.
  • Continuously tune and optimize detection logic to reduce false positives and improve detection efficacy.
  • Act as a security incident response lead during issues, investigations, and remediation efforts.
  • Design, build, and manage security playbooks using detection engineering best practices.
  • Conduct vulnerability testing, threat hunts, purple team activities, and security assessments to identify gaps and opportunities.
  • Perform internal and external security reviews of corporate properties and enterprise applications.
  • Lead security incident response tabletop exercises.
  • Collaborate with threat intelligence teams to incorporate new IOCs and TTPs into detection strategies.
  • Partner with Product Security, IT, and Legal teams to strengthen the overall security posture.

Requirements

  • Experience with modern security principles and tooling, including SIEM, security data lakes, detections as code, EDR, and zero trust networking.
  • Demonstrated experience with incident response and incident management.
  • Strong understanding of attack frameworks such as MITRE ATT&CK and mapping detections to TTPs.
  • Understanding of authentication and authorization schemes such as SAML, OpenID, OAuth2, and SCIM.
  • Experience scripting or coding in at least one language: Python, NodeJS, Ruby, or Bash.
  • Proven ability to act as a technical subject matter expert on security, compliance, and assurance topics.
  • Ability to communicate effectively with both technical and non-technical audiences.
  • Comfort working in ambiguity, with strong analytical skills, self-motivation, and cross-functional collaboration ability.
  • Experience with SIEM platforms like Panther and their detection capabilities is a plus.
  • Familiarity with Wiz and cloud-native security tooling for detection in AWS, Azure, or GCP is a plus.
  • Relevant certifications in cloud security or incident response, such as SANS GIAC certifications, are preferred.
  • Proven experience developing, deploying, and maintaining detection rules such as Sigma, YARA, Splunk SPL, and KQL.
  • Ability to occasionally work outside standard hours due to on-call, stand-by, or off-hours duties.

Benefits

  • Remote-first work environment.
  • Opportunity to work for a growing company serving major customers in demanding industries.
  • Culture that values collaboration, curiosity, and getting work done while still having fun.
  • Chance to work with a team that empowers employees to do their best work wherever they are.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Jito Labs

Security Engineer

Jito Labs 1-10 Internet Software & Services

Jito is hiring a Security Engineer to help strengthen and scale security across its Solana infrastructure and products by owning operational security work, conducting reviews, and building testing and monitoring tooling.

United States Full-time Senior Security Engineer
$175k-$195k
C++ Go Penetration Testing Python Rust
9 minutes ago
Intersect

Cybersecurity Lead

Intersect 1-10 Internet Software & Services

Intersect is hiring a Cybersecurity Lead to own and scale a modern security program that protects cloud, SaaS, and enterprise systems supporting the company’s rapid growth in energy and infrastructure.

United States Canada Full-time Lead Security Engineer
$185k-$195k
CrowdStrike Cybersecurity GCP Network Security SIEM
9 minutes ago
Coderio

Incident Response Developer SR JP033CA

Coderio 51-250 Internet Software & Services

Coderio is seeking a Senior Security Automation Engineer in its Detection & Response cybersecurity team to design integrations, automate incident-response operations, and build AI-assisted solutions for a remote role based in Argentina.

Argentina Full-time Senior Full-stack Engineer Security Engineer
AWS Azure CloudFormation JavaScript LLM Node.js Python React REST API Serverless SIEM Terraform TypeScript
24 minutes ago
Coinbase

Staff Security Engineer, IAM

Coinbase 1K-5K Capital Markets

Coinbase is hiring a senior technical leader for its Security IAM program to architect and deliver workforce identity and access controls that protect customer funds and data across a complex, regulated technology environment.

United States Full-time Lead Security Engineer
$218k-$256k
AWS CI/CD GCP Generative AI Go Machine Learning Microservices OAuth OpenID Connect Python SAML
1 hour, 24 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers