Lead Security Engineer (Detection & Response)

Overview

The Lead Security Engineer (Detection & Response) plans and carries out security measures to monitor and protect sensitive data, networks and systems from infiltration and cyber-attacks. This role is responsible for the design, implementation, and support of a variety of complex projects supporting the SOC (Security Operations Center) and security engineering functions. This role is a critical escalation point for Security Detection and has technical responsibility for the managed SOC and security engineering including the documentation of processes, procedures, and technical solutions.

Why Lifeway? 

Lifeway is a place where you can bring your faith and work experience to join in the most important mission in the world: making disciples of Jesus Christ. Whether you’re a creator or storyteller, data guru or problem-solver, or anywhere in between, if you’re passionate about serving the church, we have a place for you. Lifeway has a strong Work from Anywhere (WFA) culture that is deeply focused on our mission and values. While headquartered in Nashville, TN, many of our positions are remote-eligible and have autonomy and flexibility with work hours. We provide equipment and resources to ensure team members have access to a productive and ergonomic workspace. We believe building relationships and community is essential to how we work together, so Lifeway hosts all-team meetings several times per year and provides travel for key team gatherings for remote-based team members. Full-time employees are eligible for enrollment in our comprehensive benefits plans including healthcare, vacation and sick time, holiday pay, care days, 401(k) plan, maternity and paternity leave, adoption assistance, mission trip time, and more. If this sounds like a place where you would be excited to serve the kingdom of God, we would love for you to join our team.

Learn more about our culture at team.lifeway.com/culture-code 

This is a remote position in the U.S. with occasional travel to Nashville for in-person team gatherings. #LI-Remote 

Responsibilities

• Lives out Lifeway’s mission and values, showing deep commitment to Kingdom work
• Plan, Design, build, implement, and administers security systems and processes within a modern cloud computing environment
• Designs cloud security solutions to ensure adequate protection, detection and response of the environment
• Cultivate and manage relationships with 3rd parties (Managed detection & response providers, partners, vendors), and other associated entities to ensure coverage of risks and agreements to performance
• Partners cross functionally for security monitoring and incident response
• Ensures information security practices are compliant with PCI and other standards and regulations
• Leverage frameworks and threat modeling to help identify needs and drive maturity
• Build and leverage metrics & processes to ensure operational excellence and resolve technical problems

Qualifications

Education

• Bachelor's degree in computer science, cybersecurity, information technology, or related degree

Skills, Knowledge, & Experiences, required

• Expert knowledge of cloud security solutions, anti-malware solutions, intrusion prevention, and web content filtering
• Experience with cloud architecture and coding (AWS, GCP, Azure)
• Expert knowledge of risk assessment tools, technologies, and methods
• Strong knowledge of coding, technologies and methods
• Strong ability to develop and execute incident response plans, identify root cause, and drive mitigations to prevent future occurrences
• Strong ability to enumerate and address security control gaps, abnormal behavior patterns and attack techniques in cloud environments
• Knowledge of applicable regulations and frameworks including PCI, NIST-CSF and MITRE ATT&C

Actively involved in an evangelical Christian church

Skills, Knowledge, & Experiences, preferred 

• CISSP, GIAC, CCSK, CCSP certifications
• Familiarity with AWS Organizations Service Control Policies (SCP), Resource Control Policies (RCP), and Declarative Policies.
• Familiarity with infrastructure-as-code (Terraform, CloudFormation), Containers and Serverless functions. (2+ years)