Staff Security Engineer - SecOps & Threats

Responsibilities & Accountabilities

Execute on milestones for end-to-end SecOps & Threat initiatives in accordance with the Security roadmap

Identify and respond to complex security incidents, including system compromise, intrusion attempts, and/or denial of service attacks by conducting continuous monitoring, vulnerability assessments, and log analysis

Engage vendors, Infrastructure, IT, GRC, Cloud, and Application Security teams as required to validate alerts, ensure incident resolution, and perform root cause analysis

Research emerging threats, publicly disclosed vulnerabilities or attack vectors, and proactively push mitigating controls to products and services

Perform security forensics

Build security tools and advanced automation that enable the 6sense Security Team to operate at speed and scale

Propose, plan, lead, and execute threat exercises based on current security trends, advisories, publications, and academic research

Mentor engineers across Information Security to drive security controls and risk remediation

Communicate risks and mitigations across multiple audiences with varying levels of sensitivity

Execute on quarterly individual Key Results that support team Objectives (OKRs)

Performance Measurement

Maintains up-to-date knowledge of 6sense’s product, environment, systems, and architecture

Actively prepares for weekly 1:1s with Manager and monthly skip levels

Takes part in the Security Operations on-call rotation

Mitigates security exposures

Drives incidents to closure within established SLAs

Participates in creation of milestones associated with major security projects

Executes on milestones associated with major security projects

Develops and maintains up-to-date handbook pages, runbooks, workflows, and dashboards

Provides project status updates on a weekly basis

Educational and Experience Requirements

5+ years of experience being part of a Security Operations or similar team

3+ years of experience developing automation

2+ years of experience conducting adversary emulation exercises

Experience with security tools and cloud environments (e.g., Vulnerability Scanners, SIEM, SOAR, AWS)

Experience with industry frameworks, regulations, and standards, such as: MITRE ATT&CK, STRIDE, PASTA, ISO 27001, SOC 2, GDPR, PCI, SOX, NIST, etc.

Preferred Qualifications

Bachelor's degree in a related field

Relevant industry certifications, such as CISSP, CISM, or GIAC, are highly desirable

Competencies and Behaviors

Works independently to maintain and improve overall company security posture

Collaborates with cross-functional teams

Translates technical requirements into actionable and time-bound requests

Drives projects and tasks to completion by following up on questions, deadlines, and requests for input

Maintains accuracy of information

Proactive prioritization and escalation to management

Strong communication skills, including verbal, written, and presentation skills

Base Salary Range: $231,089.25 - $265,930.90. The base salary range represents the anticipated low and high end of the base salary range for this position. Actual salaries may vary and may be above or below the range based on various factors, including but not limited to work location and experience. The base salary is one component of 6sense’s total compensation package for this position. Other compensation may include a bonus program or commission plan, and stock options if approved by 6sense’s board. In addition, 6sense provides a variety of benefits, including generous health insurance coverage, life, and disability insurance, a 401K employer matching program, paid holidays, self-care days, and paid time off (PTO). #Li-remote

Notice of Collection and Use of Personal Information for California Residents: California Recruitment Privacy Notice and Policy