Jobs · Information Technology

Senior Engineer, Security Operations

ACV Auctions · Buffalo, NY · 1 wk ago
RemoteRemoteInformation TechnologyFull-time

About the role

ACV is a technology company that has revolutionized how dealers buy and sell cars online. We are transforming the automotive industry by building the most trusted and efficient digital marketplace with data solutions for sourcing, selling, and managing used vehicles with transparency and comprehensive insights.

Responsibilities

  • Lead proactive, hypothesis-driven threat hunting across endpoint, cloud, and identity environments
  • Develop and refine detection logic, correlation rules, and behavioral analytics within SIEM and EDR platforms
  • Map adversary tactics, techniques, and procedures (TTPs) to MITRE ATT&CK to improve detection coverage
  • Analyze threat intelligence and emerging attack patterns to strengthen defenses
  • Lead and scale cybersecurity operations across enterprise or multi-tenant environments
  • Oversee incident triage, investigation, containment, and remediation
  • Act as escalation point for high-severity incidents
  • Improve alert fidelity and reduce false positives through tuning and automation
  • Mature the alert and incident management tracking systems
  • Standardize workflows and playbooks to ensure operational consistency
  • Design and implement incident response frameworks and playbooks
  • Lead response efforts for advanced threats across environments supporting up to large user bases
  • Conduct root cause analysis and post-incident reviews
  • Automate response actions to reduce mean time to detect/respond (MTTD/MTTR)
  • Secure multi-cloud environments (AWS, GCP) through posture management and configuration monitoring
  • Detect zero trust principles and violations across identity and access management systems
  • Strengthen controls within platforms such as, CASB and DLP solutions
  • Automate workflows and security operations processes for tracking the remediations actioned against the environment
  • Integrate tooling and orchestrate response using SOAR or similar platforms
  • Continuously improve detection capabilities and operational efficiency
  • Deliver AI enabled automations and tooling for the ACV Security Operations Center
  • Deliver executive-level reporting (MBRs/QBRs) on security posture, threats, and risk
  • Translate technical findings into business-relevant insights to present to external stakeholders
  • Collaborate cross-functionally with IT, engineering, and leadership teams
  • Perform additional duties as assigned

Requirements

  • 8+ years’ experience
  • Minimum of a 4 year Bachelor’s degree
  • Strong understanding of security frameworks and best practices (NIST CSF, ISO 27001, CIS Controls)
  • Extensive experience with cloud security, with a strong focus on securing applications deployed in AWS and/or GCP environments
  • Experience with modern software development including Agile and Generative AI techniques
  • Familiarity with adversarial AI/ML techniques and their protections, such as Interference attacks and others in the MITRE ATLAS framework
  • Excellent communication, interpersonal, and leadership skills, with an ability to translate complex technical risks into business context for executive leadership and stakeholders
  • Ability to work effectively in a remote environment and manage geographically dispersed teams
  • Excellent coordination, project management, and organization skills and comfortable with multi-tasking in a high-energy environment
  • Practical hands-on experience engineering and implementing data security controls in cloud environments including databases, datastores, and SaaS platforms
  • Linux and Kubernetes/Container management and security
  • DevOps code-based implementation and management
  • Knowledge of AWS including but not limited to S3, Lambda, RDS, EC2, and AWS Security Center
  • Understanding of TCP/IP Networking including knowledge of Protocols and Services
  • Overall understanding of the Security domain, compliance, business, risk, ops etc

Qualifications

  • Knowledge of CASB, DLP and SASE technologies
  • Proven ability to be agile and work effectively in a dynamic environment
  • Ability to perform under pressure and respond rapidly to emerging incidents and situations
  • Practical hands-on experience engineering and implementing data security controls in cloud environments including databases, datastores, and SaaS platforms
  • Linux and Kubernetes/Container management and security
  • DevOps code-based implementation and management
  • Knowledge of AWS including but not limited to S3, Lambda, RDS, EC2, and AWS Security Center
  • Understanding of TCP/IP Networking including knowledge of Protocols and Services
  • Overall understanding of the Security domain, compliance, business, risk, ops etc

Skills

  • Security frameworks and best practices (NIST CSF, ISO 27001, CIS Controls)
  • Cloud security, with a strong focus on securing applications deployed in AWS and/or GCP environments
  • Modern software development including Agile and Generative AI techniques
  • Adversarial AI/ML techniques and their protections, such as Interference attacks and others in the MITRE ATLAS framework
  • Communication, interpersonal, and leadership skills
  • Remote work experience and team management
  • Agile and dynamic environment experience
  • Data security controls in cloud environments including databases, datastores, and SaaS platforms
  • Linux and Kubernetes/Container management and security
  • DevOps code-based implementation and management
  • AWS including but not limited to S3, Lambda, RDS, EC2, and AWS Security Center
  • TCP/IP Networking including knowledge of Protocols and Services
  • Security domain, compliance, business, risk, ops etc

Benefits

  • Competitive compensation packages
  • Learning and development opportunities
  • Health, physical, financial, social, and emotional wellness programs
  • Multiple medical plans including a high deductible, low cost health plan
  • Short-Term Disability, Long-Term Disability, and Life Insurance
  • Comprehensive optional benefits such as Dental, Vision, Supplemental Life/AD&D, Legal/ID Protection, and Accident and Critical Illness Insurance
  • Grossly generous paid time off options, including uncapped vacation days, the greater of 3 paid sick days or in accordance with the applicable state or local paid sick leave law, 6 paid company holidays, 2 floating holidays, parental leave, bereavement leave, jury duty leave, voting leave, and other forms of paid leave as required by applicable law or regulation
  • Employee Stock Purchase Program with additional opportunities to earn stock in the Company
  • Retail retirement planning through the Company’s 401(k)

Pay

The compensation range for this position is listed in the "Job Details" section at the bottom of this posting. Please note that final compensation will be determined based upon the applicant's relevant experience, skill set, location, business needs, market demands, and other factors as permitted by law.

Schedule

Not specified

Similar jobs