Sr. Security Engineer

Ring is looking for a Senior Security Engineer with strong development, security, and operations skills to keep our platforms secure and available. This is not your typical “eyes on glass” type of operations position. We’re looking for someone as dynamic as the platform that is ready to take a proactive approach to managing operations and is as comfortable designing new systems as they are with keeping existing ones running. If you are excited to work in a fast-pace, challenging, rapidly scaling environment and want to flex both your security and DevOps abilities, this is the role for you.

What you’ll do

  • Design and develop automation to ensure platform security, including pre-packaged containment and response functions
  • Target and investigate anomalous events across the platforms and coordinate response with IT, DevOps, and Development teams
  • Recommend and help implement improved threat response capabilities into the DevOps platform
  • Assist with code review for deployment automation as well as actual product capabilities
  • Coordinate testing activities including traditional penetration testing as well as developing automated security QA testing
  • Audit the accuracy of identities and roles within the various platforms

Knowledge, Skills & Abilities

  • 7+ years of experience as in a systems / security engineering role
  • Deep experience managing security incident response processes at scale in a highly dynamic environment
  • Well-rounded background in host, network and application security
  • Experience with Amazon AWS and/or other IaaS/PaaS/SaaS equivalents
  • Experience developing automated containment and mitigation mechanisms, especially as AWS Lambda functions
  • Experience with one or more of the following languages: Python, Perl, Ruby, JavaScript, Lua, Golang and/or Bash
  • Basic understanding of security models surrounding encryption, authentication, authorization and access controls
  • Understanding of modern database (SQL and NoSQL), and containerization technologies (Docker/LxC)
  • Experience with SEIM technologies and integration with monitoring and logging technologies like Logstash, NewRelic, Reimann, and/or Airbrake
  • Working knowledge of SCM tools; ideally Github, Jenkins, Travis, and/or CircleCI
  • Familiarity with configuration management systems (Puppet, Chef, Salt, Ansible)
  • Understanding of modern database technologies (SQL and NoSQL), experience with Amazon RDS and Dynamo is a plus
  • Experience managing penetration tests and driving resolution through standard SDLC processes and tools
  • Certified ethical hacking certifications are a plus
  • Knowledge of embedded/IoT development is a plus, but not required

Back to top