Senior Staff Security Engineer

🕒 il y a 1 mois

🏄 California – Distant

🏄 California – Remote

⏰ Temps Plein

🟠 Senior

👮‍♂️ Cybersécurité / Ingénieur Sécurité

Postuler Maintenant

Trouver des Emplois à Distance Similaires

Recevoir des emails pour des emplois à distance

📊 Vérifiez votre score de CV pour ce poste

Améliorez vos chances d'obtenir un entretien en vérifiant votre score de CV avant de postuler.

Télécharger le CV

Red Cup IT

Site WebLinkedInTous les Emplois

11 - 50 employés

Fondée en 2009

🔒 Cybersecurity

☁️ SaaS

Cybersecurity • SaaS • Managed Services

Red Cup IT est un fournisseur de services managés (MSP) spécialisé dans la cybersécurité, la conformité et les services de CIO virtuel pour les entreprises de taille moyenne et les grandes entreprises. La société s'engage à fournir des solutions de cybersécurité avancées, un support des opérations informatiques et à gérer des projets complexes tout en assurant une relation de coopération avec les équipes informatiques internes des clients. Avec une attention particulière portée à la sécurité, Red Cup IT propose des services englobant l'augmentation des compétences informatiques, la livraison de projets et la gestion du cloud, tous adaptés pour offrir des environnements informatiques efficaces et sécurisés à ses clients.

Description

• Strategic Security Architecture & Product Strategy • Tier 4 Escalation & Forensic Mastery • Security Engineering & Hyper-Automation • High-Stakes Advisory & Governance

🎯 Exigences

• 8–12+ Years in Information Security, with a significant background (3+ years) in multi-client consulting or MSP environments. • Force Multiplier: Proven track record of leading cross-functional projects and mentoring senior engineers without direct-report authority. • Bilingual Communication: The rare ability to pivot from a deep-dive technical audit with an engineer to a risk-based ROI presentation for a CEO. • Expert-level AWS/Azure security; Zero Trust Architecture (ZTA); Advanced IAM/Entra ID. • Advanced SOAR/SIEM engineering (Sentinel, Splunk, CrowdStrike); MITRE ATT&CK mapping. • Deep-packet inspection; BGP security; SD-WAN; SASE; Micro-segmentation. • Proficiency in Python, Terraform, or Ansible for infrastructure-as-code. • Certifications CISSP (Highly Preferred), CISM, CCSP, or specialized GIAC (GCIH/GCFA).

🏖️ Avantages

• Scalable Multi-tenancy: Architect and maintain hardened, isolated security stacks (SIEM, EDR, XDR) designed to scale across hundreds of distinct client environments. • Product Vetting: Serve as the technical lead for vendor evaluations, "battle-testing" emerging tech to define our global standard offerings. • Global Standardization: Engineer "Gold Image" baselines and automated deployment templates based on CIS and NIST frameworks to ensure rapid, secure onboarding. • Final Authority: Serve as the ultimate technical escalation point for the SOC, leading the response to sophisticated APTs and complex breaches. • Post-Mortem Leadership: Conduct deep-dive Root Cause Analysis (RCA) and translate incident findings into systemic, fleet-wide preventative measures. • Security as Code: Build the automation tissue that connects our stack, utilizing Python, PowerShell, and Terraform to automate threat containment and patch management. • Integration Engineering: Develop custom API integrations to bridge gaps between vulnerability scanners, RMM tools, and ticketing systems for seamless auto-remediation. • Strategic vCISO: Act as a high-level advisor for key accounts, translating abstract risk into actionable business roadmaps for C-suite stakeholders. • Compliance Orchestration: Oversee technical evidence collection and governance for HIPAA, SOC 2, and CMMC, ensuring our clients remain audit-ready.