Security Operations Engineer
Reserv · Atlanta, GA · 2 wk ago
RemoteRemoteInformation TechnologyFull-time
About Reserv
Reserv is an InsurTech company creating and incubating cutting-edge AI and automation technology to bring efficiency and simplicity to claims. Founded by industry veterans, with deep experience in SaaS and digital claims, Reserv is venture-backed by Bain Capital and Altai Ventures and began operations in May 2022. We're focused on automating highly manual tasks to tackle long-standing problems in claims while setting the new standard for TPAs, insurance technology providers and adjusters alike.
Responsibilities
- Continuously monitor security telemetry to identify potential threats, malicious activity, or unauthorized access.
- Investigate, analyze, classify, prioritize and contain security breaches in real-time, providing detailed reporting and post-incident analysis.
- Conduct vulnerability assessments to identify system weaknesses before they are exploited.
- Cook up and assist with penetration testing activities.
- Install, configure and maintain security software and systems such as endpoint security, intrusion detection, prevention systems and logging platforms.
- Research, analyze and stay up to date on the latest security trends, hacking techniques, emerging cyber threats.
- Educate employees and stakeholders on security protocols, phishing threats and data protection.
- Develop SOPs, playbooks/runbooks to consistently respond to common incidents that allow our security posture to scale as fast as our business.
- Hunt for unknown threats in the environment by analyzing logs based on current and emerging threat intelligence. Be the hero who identifies potential threats before they happen!
Requirements
- Minimum of 3 years of experience in the trenches of a dedicated cybersecurity role.
- Working understanding of NIST Cybersecurity Framework.
- Technical proficiency with MacOS, Windows, Unix/Linux.
- Experience securing and monitoring mobile devices.
- Knowledge of current threat actors, TTPs, and MITRE ATT&CK framework.
- Fluent in SIEM, EDR/XDR, and Vulnerability Scanners.
- Experience with cloud-based productivity platforms such as Google Workspace and/or Microsoft 365.
- Experience with SIEM tools, vulnerability scanners, endpoint protection, email security and threat intelligence platforms.
- Experience with penetration testing.
- Experience performing risk assessments, drafting/maintaining cybersecurity policies and procedures, and constructing after-action reports with precise details.
- Familiarity with SSO and identity and access management systems.
- Security+, CySA+ or similar industry-standard security certifications.
- Strong written and verbal communication skills.
- You possess a relentless technological curiosity where "sniffing out" anomalies is becoming second nature.
- Experience working in a cloud-first or startup environment.
- Bachelors degree in Cybersecurity, IT, or related field.
- Automation experience with various scripting languages (e.g. Bash, Python, PowerShell).
- AWS and/or GCP certifications or demonstrated experience.
- Deep understanding of at least two major operating systems.
- Familiarity with the concepts of secure software development (SSDLC).
Qualifications
- Generous health-insurance package with nationwide coverage, vision, & dental.
- 401(k) retirement plan with employer matching.
- Competitive PTO policy – we want our employees fresh, healthy, happy and energized.
- Generous family leave policy.
- Work from almost anywhere to facilitate your work life balance.
- Cool, functional swag.
- Apple laptop, large second monitor, and other quality-of-life equipment you may want.
Benefits
- Generous health-insurance package with nationwide coverage, vision, & dental.
- 401(k) retirement plan with employer matching.
- Competitive PTO policy – we want our employees fresh, healthy, happy and energized.
- Generous family leave policy.
- Work from almost anywhere to facilitate your work life balance.
- Cool, functional swag.
- Apple laptop, large second monitor, and other quality-of-life equipment you may want.
Pay
- Competitive compensation package tailored to individual performance and qualifications.
Schedule
- Full-time remote position.