Business Area:
Engineering
Seniority Level:
Mid-Senior level
Job Description:
At Cloudera, we empower people to transform complex data into clear and actionable insights. With as much data under management as the hyperscalers, we're the preferred data partner for the top companies in almost every industry. Powered by the relentless innovation of the open source community, Cloudera advances digital transformation for the world’s largest enterprises.
As a Senior Security Response Engineer at Cloudera, you will be entrusted with fortifying the security posture of our organization. Your responsibilities will encompass a wide spectrum of threat detection, security analysis, and incident response activities. This role requires not only a deep technical understanding of cybersecurity but also strong problem-solving abilities, effective communication skills, and the capacity to work both independently as well as collaboratively in a team environment.
In this dynamic and critical role within our Incident Response Function, staff will be part of a team responsible for monitoring, detecting, and responding to cybersecurity threats in real-time. The nature of our work requires a 24/7 operational capability, and as such, this position involves a shift schedule to ensure continuous vigilance and response readiness. The role is structured to work in various shift patterns, including days, nights, on-call, weekends, and holidays, with the possibility of extended hours during high-priority incidents. The ability to adapt to a changing schedule and maintain a high level of performance and attention to detail is essential.
Note: This requisition is being hired into our third shift that takes place in the overnight US hours. This scheduling may be modified as business needs change, and may become part of a broader rotation schedule in the future.
As a Senior Security Response Engineer you will:
- Proactively monitor and respond to security alerts and events from various sources, including SIEM, Cloud Security Platforms, EDR, and other technologies.
- Conduct in-depth analysis of security incidents to determine the root cause and impact, and recommend appropriate mitigation strategies.
- Collaborate with cross-functional teams to investigate and respond to security incidents, including documenting findings and actions taken.
- Develop and maintain incident response playbooks, processes, standards, procedures, automations, and workflows to streamline response efforts and improve the organization's security posture.
- Participate in threat hunting activities to identify advanced threats and vulnerabilities.
- Identify, Document, and Research Threat Intelligence Findings and Reports.
- Collaborate with cross-functional teams on various cybersecurity initiatives.
- Provide mentorship and guidance to junior analysts and engineers.
- Assist in the evaluation and implementation of security tools and technologies.
- Stay up-to-date with emerging threats, vulnerabilities, and industry best practices.
- Continuously pursue forward thinking and unique solutions to security challenges
We are excited about you if you have:
- Robust Analytical Mindset and self-starter with a genuine interest in forward-thinking Cybersecurity
- Relevant Educational Degree (Information Security / Information Assurance / Cybersecurity) or Equivalent Cybersecurity Work Experience (3-5 Years)
- Three or more years of technical experience in providing Large Enterprise Incident Response and/or Threat Hunting
- Experience in Automation and/or Orchestration
- Proficiency with security technologies, including SIEM, EDR, and Cloud Security systems.
- Strong understanding of cyber threats, attack techniques, and incident response methodologies.
- Must be able to independently analyze and respond to alerts and security incidents, including but not limited to triage, root cause analysis, and response coordination.
- Proficiency in analyzing and responding to threats on Linux-based systems
- Excellent problem-solving and communication skills.
- Ability to work effectively both independently and as part of a team.
- To comply with U.S. federal government requirements, U.S. citizenship is required for this position.
You may also have:
- Supporting certifications such as EC-Council (CND/C|CSE), Comptia (CYSA+/CASP+), OffSec (OSTH, OSDA), or GIAC (GCIA/GCIH/GDAT/etc.)
- Advanced Proficiency in analyzing and responding to threats in Cloud Environments (AWS/GCP/Azure)
- Experience with Data Analytics leveraging Machine and/or Deep Learning
- Knowledge of Threat Intelligence Methodologies
- Cloud/Linux Digital Forensics Experience
What you can expect from us:
- Generous PTO Policy
- Support work life balance with Unplugged Days
- Flexible WFH Policy
- Mental & Physical Wellness programs
- Phone and Internet Reimbursement program
- Access to Continued Career Development
- Comprehensive Benefits and Competitive Packages
- Paid Volunteer Time
- Employee Resource Groups
Cloudera is an Equal Opportunity / Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.