Senior Security Engineer - Blue Team at Raya

About Raya

Raya is a technology company that operates an exclusive, membership-based social network, comprising two primary applications. The Raya application facilitates social networking, emphasizing connections among individuals within creative industries, and requires a selective application process. Raya App, Inc. also offers "Places," a travel application that provides curated destination recommendations. Both applications underscore the company's focus on fostering private online communities and upholding values such as trust, respect, and privacy.

Role Overview

We are seeking a highly skilled and experienced Blue Team Lead Security Engineer to join our dynamic cybersecurity team. In this role, you will be a key player in safeguarding our organization's assets by leading and enhancing our defensive security capabilities. You will be responsible for proactively identifying, analyzing, and mitigating security threats, as well as mentoring and guiding other security team members. The ideal candidate possesses a deep understanding of security principles, advanced technical expertise, and a passion for staying ahead of the evolving threat landscape.

What You Will Do

• Security monitoring and incident response - Lead real-time security monitoring efforts, analyze logs, provide incident response coverage and support, triage and investigate security alerts, identify root causes, and implement containment and remediation strategies. Develop and maintain incident response plans and procedures.
• Threat detection and rule writing - Design, develop, and implement threat detection rules and alerts to identify malicious activity. Continuously improve detection capabilities based on emerging threats and vulnerabilities, and optimize security tools and technologies.
• Incident visibility and SIEM optimization - Increase signal fidelity and reduce false positives in our Security Information and Event Management (SIEM) system. Develop and implement strategies to improve the quality and relevance of security data, and customize and configure the SIEM to meet specific security needs.
• Threat intelligence integration - Integrate and operationalize threat intelligence feeds to enhance detection and prevention capabilities. Analyze threat intelligence reports and develop proactive measures to defend against known and emerging threats.
• Security systems development - Create and implement systems and processes to improve event analysis and correlation, leveraging AI, machine learning, and automation where applicable. Develop tools and scripts to automate security tasks and improve efficiency, and evaluate new security technologies and solutions.
• Vulnerability management - Create, configure, and manage security scanners for vulnerability assessments and penetration testing. Conduct regular vulnerability scans, prioritize and track vulnerabilities, and work with development and operations teams to ensure timely remediation.
• Threat hunting - Conduct proactive threat hunting activities to identify and investigate potential threats that may evade traditional detection methods. Develop and utilize threat hunting methodologies and techniques and analyze network traffic, system logs, and other data sources to uncover malicious activity.
• Mentorship and leadership - Provide technical leadership, guidance, and mentorship to junior security engineers and analysts. Foster a collaborative and knowledge-sharing environment and contribute to the development of security best practices, policies, and procedures.

Qualifications

• 5+ years of experience in a cybersecurity role, with a focus on blue team operations.
• Strong understanding of security principles, frameworks, and best practices, for example MITRE ATT&CK and NIST Cybersecurity Framework.
• Extensive experience with security tools and technologies, including SIEM systems, intrusion detection/prevention systems (IDS/IPS), endpoint detection and response (EDR), vulnerability scanners, and log management tools.
• Proficiency in scripting languages for automation and tool development, for example Python, Bash, or PowerShell.
• Experience with threat intelligence platforms and sources.
• Strong analytical, problem-solving, and troubleshooting skills.
• Excellent communication and interpersonal skills, with the ability to work independently and as part of a team.
• Experience with cloud security, such as AWS, Azure, or Google Cloud Platform.
• Knowledge of AI and machine learning concepts and their application to security.
• Experience with DevSecOps practices.
• Relevant security certifications, for example CISSP, GCIH, GCIA, or CEH, are highly desirable.

Compensation

Salary and equity: Very competitive, equity based employment.

Benefits

• Health Insurance - Comprehensive medical and dental coverage.
• $50 daily meal stipend - Your choice of Uber Eats, Grubhub, or Doordash.
• Unlimited PTO - Flexible time off policy.
• Paid parental leave - 12 weeks paid parental leave, three months off - fully paid - for all new parents.
• Travel stipend - $1,000 a year to go somewhere in the world that you have never been.
• Learning opportunities - Ongoing professional development and learning support.
• Equity - Equity or stock option opportunities as part of employment.

How to Apply

Apply Now via the job posting URL. This is a full-time, remote role. Raya values human connection, empathy, and curiosity, and seeks candidates who share those values.