Senior Security Engineer, Detection and Response
London, UK
Ripple
Ripple is the leading provider of cross-border payment and digital asset custody solutions. Discover how we help drive impact with blockchain for businesses.At Ripple, we’re building a world where value moves like information does today. It’s big, it’s bold, and we’re already doing it. Through our crypto solutions for financial institutions, businesses, governments and developers, we are improving the global financial system and creating greater economic fairness and opportunity for more people, in more places around the world. And we get to do the best work of our career and grow our skills surrounded by colleagues who have our backs.
If you’re ready to see your impact and unlock incredible career growth opportunities, join us, and build real world value.
THE WORK:
Through our blockchain technology and rapidly growing network of financial institutions, Ripple is improving the global financial system and increasing economic inclusion for more people, in more places around the world. Ripple is looking for passionate Information Security professionals to build a world class Information Security program. As part of the Information Security team, you will help us achieve this mission by actively working to protect our staff, company, and the larger crypto communities we engage with.
Ripple's Detection & Response team defends against internal and external threats across our company and services. We are focused on protecting Ripple, our revolutionary payment technology, our employees, and our customers. To accomplish this, we are building data pipelines and detections, automating incident response, and developing leading-edge solutions to collect and analyze data in both security incidents and investigations. As a Detection and Response Engineer, you will build and grow your career in all of these areas.
WHAT YOU’LL DO:
- Help lead the overall detection and response strategy
- Continually improve our ability to monitor for anomalies and detect malicious activity
- Analyze applications and systems to identify relevant data sources for threat detections
- Tune and test detection logic to reduce false positives and noise
- Work with technology vendors to optimize security services for peak effectiveness
- Research and collaborate internally and externally on open-source solutions
- Automate response processes with SOAR and related technologies
- Act in a purple team capacity to ensure effectiveness of security systems and controls
- Participate in cross-functional security functions to help drive continual program improvements
WHAT YOU'LL BRING:
- 5+ years of experience working within a security operations environment
- At least year of experience in writing detections, SIEM rules, or EDR
- Significant experience with standard incident response processes
- Expertise in a broad range of information technologies, such as public cloud infrastructure (AWS,GCP), authentication systems, vulnerability management solutions, network infrastructure, etc.
- Someone that has contributed to the development of detection and alerting pipelines
- Experience in dissecting attacker methodologies and techniques
- Comprehensive understanding of product and infrastructure logs from a security perspective
- Experience building and delivering projects from start to finish
- Knowledge of a broad range of attacker tactics, techniques, and procedures (TTP’s)
- Above all, a team player that can handle challenging situations, a rapidly maturing security culture, and an eagerness to mentor less experienced engineers
WHO WE ARE:
Do Your Best Work
- The opportunity to build in a fast-paced start-up environment with experienced industry leaders
- A learning environment where you can dive deep into the latest technologies and make an impact. A professional development budget to support other modes of learning.
- Thrive in an environment where no matter what race, ethnicity, gender, origin, or culture they identify with, every employee is a respected, valued, and empowered part of the team.
- In-office collaboration for moments that matter is important to our culture, and we give managers and teams the flexibility to decide which 10+ days a month they come in.
- Weekly all-company meeting - business updates and ask me anything style discussion with our Leadership Team
- We come together for moments that matter which include team offsites, team bonding activities, happy hours and more!
Take Control of Your Finances
- Competitive salary, bonuses, and equity
- Competitive benefits that cover physical and mental healthcare, retirement, family forming, and family support
- Employee giving match
- Mobile phone stipend
Take Care of Yourself
- R&R days so you can rest and recharge
- Generous wellness reimbursement and weekly onsite & virtual programming
- Generous vacation policy - work with your manager to take time off when you need it
- Industry-leading parental leave policies. Family planning benefits.
- Catered lunches, fully-stocked kitchens with premium snacks/beverages, and plenty of fun events
Benefits listed above are for full-time employees.
Ripple is an Equal Opportunity Employer. We’re committed to building a diverse and inclusive team. We do not discriminate against qualified employees or applicants because of race, color, religion, gender identity, sex, sexual identity, pregnancy, national origin, ancestry, citizenship, age, marital status, physical disability, mental disability, medical condition, military status, or any other characteristic protected by local law or ordinance. Please find our UK/EU Applicant Privacy Notice and our California Applicant Privacy Notice for reference.* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: AWS Blockchain Cloud Crypto EDR GCP Incident response Privacy SIEM SOAR Strategy Vulnerability management
Perks/benefits: Career development Competitive pay Equity / stock options Flex vacation Lunch / meals Medical leave Parental leave Snacks / Drinks Startup environment Team events Wellness
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.