Senior Security Engineer, Detection & Response (Hybrid)
Toronto, Ontario, Canada
Homebase
100,000+ small (but mighty) businesses use Homebase to manage their hourly teams, with employee scheduling, time clocks, payroll, HR and more.Hi, Future Homie!
As a Homie, you'll be part of an unstoppable team that puts customers first, embraces each day with excitement, and strives for excellence in everything you do. We’re revolutionizing the way small businesses manage their teams and grow their business. What this means for you is a shared passion for innovation and making a difference for the people we serve. So what do you say, will you join us on our mission to empower small businesses?
Our Trust and Security team is a critical component of our organization, dedicated to safeguarding our systems, data, and customers. We have a broad scope of responsibilities encompassing application security, security operations, governance, risk, and compliance (GRC), and corporate security.
Collaborating closely with internal and external stakeholders, we are committed to delivering exceptional security and quality services and products. By upholding the highest standards, we ensure the protection of our customers' trust and confidence.
As a Security Engineer specializing in Detection and Response, you will be a critical member of our Homebase Trust and Security team, significantly contributing to the security and resilience of our cloud environments and operations. You will play a key role in developing and implementing effective detection strategies, triage and investigation techniques, along with automations for response workflows to defend our critical assets from threat actors.
You will make an impact by
- Threat Detection and Response: Develop and implement strategies to detect and respond to security threats, minimizing false positives and automating processes through scripting, playbooks, and orchestration tool
- Incident Management: Actively monitor security events, participate in on-call rotations, and lead real-time incident response to contain and mitigate potential security issues.
- Collaboration: Collaborate with internal teams to design scalable security solutions and foster strong relationships within the organization.
- Threat Analysis: Collect, analyze, and share threat intelligence to proactively defend against emerging threats.
- SIEM Project Leadership: Lead the establishment of a SIEM system and coordinate with a managed service provider to externalize the Security Operations Center.
Resilience Planning: Collaborate with engineering and infrastructure teams to develop and maintain comprehensive business continuity and disaster recovery plans. - Network Protection: Work with the infrastructure team on secure network architectures, credential management, and network security tools to monitor and block malicious activities.
- Standards Development: Collaborate with engineering and infrastructure teams to establish and maintain robust logging and audit standards.
You are a bar raiser, which means you come with
- Experience: 5+ years in detection and response, security engineering, threat detection, hunting, and incident management
- Technologies: Proficiency with SIEM, EDR, NDR, and SOAR technologies, including log on-boarding and custom detection/automation development
- Scripting: Expertise in Python, Bash, and other scripting languages
- Domain Knowledge: Familiarity with network protocols, operating systems, cloud infrastructures, virtualized hosts, and containers
- Security Fundamentals: Strong understanding of cloud-centric architectures, DevOps principles, state-actor threats, and APTs
- Analytical Skills: Excellent problem-solving and analytical abilities
- Communication: Effective communication with technical and non-technical audiences
- Accountability: Strong sense of ownership and responsibility
- Crisis Management: Proficiency in handling security incidents and conducting incident response
- Bachelor's degree in information technology, cyber security, computer science, or a related field (optional)
- Stock Options - Everyone is an Owner!
- Competitive group health benefits coverage for you and your eligible dependents
- Group Investments, TFSA as well as an RRSP plan which offers a 4% company match
- Employer supplemented Medical, Dental, and Vision Insurance Plans
- Company-paid holidays and 20 days accrued PTO per year
- Continued learning and development stipend
- Paid parental leave after 1-year of service
- Top-of-the-line equipment and stipend for workspace setup
- Work from home days, Monday, Thursday, & Friday
- Meals provided at our vibrant workspaces
- Team offsites and monthly opportunities to engage with fellow Homie
- Meet the Talent Acquisition team, Alex V.
- Meet the Hiring Manager, Ali F.
- Participate in Technical Interviews
- Meet the Leadership team, Steven M. or Andrea C.
- Professional Reference Checks
- Background Check + Offer Stage
- Welcome to the team, Homie💜🎉
Diversity, Equity, and Inclusion at Homebase
At Homebase, we take pride in fostering a welcoming space where every Homie of every gender, age, orientation, culture and walk of life can be their full selves. Diverse perspectives empower us to build the best-in-class platform for small businesses and hourly shift workers. We recognize that experience comes in many forms, so if you think you’re close to what we’re looking for (even if you don’t meet 100% of the qualifications), we encourage you to apply!
About UsOur mission is to make hourly work easier for local businesses and hourly workers. Homebase currently serves more than 100,000 small (but mighty) businesses with everything they need to manage their hourly teams: employee scheduling, time clocks, payroll, team communication, hiring, onboarding, and compliance. Just don’t call us “Human Capital Management.” We have built tools for the busiest businesses, so owners and employees can spend less time on bullsh*t and more time on what matters. The Homebase team brings small business expertise from Intuit, Square, OpenTable, Yelp, Gusto, and First Data. Homebase is backed by leading venture investors Bain Capital Ventures, Baseline Ventures, Cowboy Ventures, Khosla Ventures, Plus Capital, and GGV Capital.
At Homebase, we value our differences, and we encourage all to apply. We do not discriminate on the basis of race, religion, color, gender expression or identity, sexual orientation, national origin, citizenship, age, marital status, veteran status, disability status, or any other characteristic protected by law. Homebase is proud to be an equal opportunity employer and participant in the U.S. Federal E-Verify program. Accommodations will be provided during the hiring process if needed. Please advise us of any accommodations needed within your application to ensure fair and equitable access throughout the recruitment and selection process.**Interview Recording Notice
By participating in interviews with Homebase, you consent to the use of Metaview, a recording and transcription tool, during the interview process. Please be aware that all interviews may be recorded and transcribed for the purpose of evaluating candidates and ensuring the quality of our recruitment process. If you do not consent to being recorded, please inform the Talent Team at the beginning of the call, and appropriate arrangements will be made to accommodate your preference. Your privacy is important to us, and the recorded interviews will only be used for internal evaluation and assessment of candidates.* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security Automation Bash C Cloud Compliance Computer Science DevOps EDR Governance Incident response Network security Privacy Python Scripting SIEM SOAR SOC Threat detection Threat intelligence
Perks/benefits: Career development Equity / stock options Gear Health care Home office stipend Insurance Medical leave Parental leave Team events
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.