Senior Security Engineer – Blue Team

🕒 April 14

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Olo

WebsiteLinkedInAll Job Openings

501 - 1000 employees

Founded 2005

☁️ SaaS

🛍️ eCommerce

🤝 B2B

💰 $103.3M Post-IPO Equity on 2021-11

SaaS • eCommerce • B2B

Olo is a restaurant technology platform that helps restaurants streamline their operations, enhance guest experiences, and increase sales. It provides comprehensive solutions for online ordering, delivery, catering, payment processing, and guest engagement through its fully integrated systems. Olo enables restaurants to leverage guest data to improve marketing strategies and optimize service through features like the Guest Data Platform and personalized marketing solutions. By using Olo, restaurants can manage digital orders, reduce fraud, and benefit from insights that drive growth and profitability. With a focus on online sales and customer relationship management, Olo partners with over 700 restaurant brands to enhance their digital capabilities and facilitate profitable growth.

📋 Description

• Help reduce identified risks, respond to adversarial attacks while maintaining up-time of systems, and implement strategic risk mitigation measures to safeguard data. • Provide white glove service and support to internal and external stakeholders by addressing security questions and support issues as needed. • Mentor other engineers in how to best provide support. • Help in the identification and prioritisation of future project initiatives based on risk. • Execute on cross-functional projects with high degree of ownership and excellence. • Actively mentor team members and elevate the collective team’s capabilities and skill sets through peering and informal training.

🎯 Requirements

• Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent security experience). • 5+ years of experience in security engineering and operations, including extensive experience in blue team operations, security architecture, DevOps, and general operations. • Deep knowledge of information technology, evolving threats, attack patterns, incident response, and cybersecurity standards. • Proven ability to develop and lead incident response, including remediation, mitigation, and regular status updates and reporting. • Skilled in security event evaluation, discerning legitimate security incidents from false positives, incident investigation, countermeasures, and impact monitoring. • Strong understanding of operating system, networking, and application hardening for Windows, macOS, and Linux, including virtualisation security. • Experience deploying, maintaining, and administering security technologies like IDS, DLP, FIM, firewalls, SIEM, MFA, vulnerability assessment tools, web proxies, and WAFs. • Experience with cloud providers and Infrastructure as Code (IaC) tools, such as Terraform, Ansible, or CloudFormation. • Proficiency in AWS security best practices. • Skills in automation, development, or scripting for enhanced security operations. • Advanced knowledge of Application Security, modern web protocols, and Web Application Firewalls. • Proficiency in email security protocols like SPF, DKIM, and DMARC.

🏖️ Benefits

• Lead improvements in detection and response capabilities, continuously optimising monitoring, alerting, and incident response processes. • Mentor junior and mid-level engineers, setting a high standard in security practices and offering guidance for professional development. • Participate actively in a 24/7 on-call rotation, responding to escalated security incidents and coordinating effective resolutions. • Demonstrate excellence in white-glove service delivery, ensuring security incidents are managed thoroughly and with professionalism. • Define and collaborate on implementing leading security practices, ensuring strategies align with organisational security goals and industry standards. • Take ownership of security project execution, prioritising tasks and aligning initiatives with team and company objectives. • Use and optimise advanced security tools, including SIEMs and vulnerability scanners, to enhance detection, logging, and analysis capabilities. • Conduct regular and detailed vulnerability assessments, identifying gaps in security controls and implementing mitigation strategies. • Support compliance efforts, ensuring documentation, audits, and regulatory standards are met to maintain certifications and adherence to best practices. • Collaborate with cross-functional teams, including development and IT, to integrate security best practices within architectural frameworks. • Lead security awareness initiatives, educating technical teams on advanced security topics and secure coding practices. • Stay informed on emerging security threats and technologies, continuously evaluating and integrating relevant tools or methodologies. • Provide guidance for risk management processes, helping to establish and maintain effective risk identification and mitigation protocols. • Develop and document security processes and procedures, ensuring consistency and readiness for both routine and high-stress security incidents. • Support leadership with reporting by providing insights and data on incidents, vulnerabilities, project progress, and metrics to inform security decisions. • Lead automation and process optimisation efforts by developing scripts and tools to automate repetitive security tasks as well as to enhance detection and response capabilities through the use of automation and integration of security tools.