Security Engineer
About the role
As a Security Engineer on the Trust engineering team, you will support the design, implementation, and management of Roku’s end-to-end security systems and controls that impact a global user base. Key responsibilities will include supporting the development of security controls, managing and maintaining SIEM/SOAR tooling and threat intelligence platforms, conducting technical incident response, managing vulnerability and risk assessments, and mentoring more junior analysts.
Responsibilities
- Support the design and implementation of information security systems and frameworks, including threat prevention, detection and mitigation tools
- Manage, maintain and optimize security information and event management (SIEM) platforms and associated security infrastructure
- Detect and respond to information security incidents, investigate security incidents, identify attack vectors, and lead containment/eradication/recovery efforts
- Create detailed incident reports, lead post-incident reviews, document lessons learned, and contribute to compliance reporting
- Threat Hunting & Proactive Measures: Hunt for undetected threats, tune security tools, refine detection rules, and address false positives
- Vulnerability management, analysis, oversee the vulnerability management lifecycle and reporting, support prioritization and advise relevant stakeholders on vulnerability status and postures
- Security controls, identify risks in new and existing projects and environments and support the implementation of necessary security controls to meet business needs
- Support the implementation of security orchestration, automation and response (SOAR) playbooks and procedures in order to improve response times and ensure a consistent approach to incidents
- Mentor and support to more junior analysts, and act as an escalation point for complex issues
- Support in testing and evaluation of security products and solutions
- Support the development and management of the security operations centre (SOC) function as it is built up and developed into the future
- Raise awareness of security policies and best practices across the organization. And continue to contribute to the ongoing development of best practices, procedures and security training across the organization
Requirements
You will be working in a hybrid work environment with office days on Monday through Thursday and flexible Fridays for remote work. Please note that not every benefit is available in all locations or for every role. For details specific to your location, please consult with your recruiter.
Qualifications
- Strong understanding of SIEM, EDR, cloud security services (e.g., AWS GuardDuty), and various security technologies
- Experience in automation and development of automated playbooks and associated processes in security orchestration, automation and response (SOAR) environments
- Experience in the creation of incident response plans and leading incident response efforts, and post-incident reporting when required
- Knowledge of tactics, techniques, and procedures (TTPs) utilized by threat actors and how to generate and deploy mitigation strategies
- Vulnerability management, monitoring, reporting and engagement with necessary stakeholders to ensure timely remediation
- Experience with security change management processes and procedures
- Experience of risk assessment and advisory capabilities on both internal systems and products/solutions from third-party vendors (SaaS, AI, etc)
- Strong knowledge of security frameworks and industry best practices – such as ISO 270001, NIST, PCI-DSS and others
- Strong analytical and problem-solving capabilities
- Effective communication and collaborative skills to work across diverse cross-functional teams, including development, IT, Legal, Governance and Risk, etc.
- Experience in mentoring and the development of more junior staff members with an engineering and SOC environment
Skills
We are looking for someone who can demonstrate a strong understanding of network security principles and encryption technologies. This role requires a proactive and innovative mindset, as well as the ability to work effectively in a fast-paced, dynamic environment.
Benefits
Roku offers a comprehensive benefits package that includes global access to mental health and financial wellness support and resources. Local benefits may include healthcare (medical, dental, and vision), life, accident, disability, commuter, and retirement options (401(k)/pension).
Pay
The salary range for this position is $85,000 - $120,000 annually, depending on experience and qualifications.
Schedule
This is a full-time position with a flexible work schedule, with office days on Monday through Thursday and flexible Fridays for remote work.