Senior Security Operations Engineer

April 3

Apply Now

Receive Emails with Similar Jobs

Onit

WebsiteLinkedInAll Job Openings

Onit is a company that specializes in transforming legal operations for leading businesses. Their AI-enabled workflow automation platform, OnitX, facilitates sophisticated legal business processes, helping corporate legal departments modernize and run more efficiently. Onit offers a range of products such as Enterprise Legal Management, Legal Spend Management, and Contract Lifecycle Management, all designed to enhance productivity and decision-making within legal teams. Through innovative technologies, Onit aims to streamline legal operations, improve workflow automation, and provide comprehensive insights to empower better financial management and risk mitigation. With over 3,000 global customers and extensive legal spend data, Onit supports legal departments to manage and improve their business processes effectively.

Process Automation • Legal Technology • Online Project Management • Business Collaboration Tools • Contract Review and Approval

501 - 1000 employees

🤖 Artificial Intelligence

☁️ SaaS

💰 $200M Private Equity Round on 2019-01

📋 Description

• Support the Onit security function during US Central Time business hours. • Manage and conduct vulnerability testing, penetration testing, and client security audits. • Implement and manage cloud-native security tools and third-party solutions for threat detection and incident response. • Define, maintain, and execute the Incident Response plan, investigating and resolving incident escalations. • Perform regular risk assessments and vulnerability scans of cloud infrastructure, ensuring timely remediation. • Collaborate with Dev, DevOps, and Infra teams to remediate identified vulnerabilities, discuss security best practices, and assist with security incident response. • Analyze EDR alerts and logs to identify potential security incidents, taking appropriate action. • Continuously evaluate and implement security tools and practices to enhance the security posture of the Onit environment. • Assist with security awareness programs for employees regarding security best practices. • Assist with the development and updates of Security Policies for SOC2 and ISO27001 compliance.

🎯 Requirements

• Minimum of 5 years of experience in information security, with at least 2 years focused on cloud security. • Proficient in AWS with a strong understanding of AWS networking/VPC, IAM, Security Groups, EC2, RDS, S3, and containers (EKS/ECS). • Extensive hands-on experience investigating security incidents, along with the creation, management, and execution of security runbooks / playbooks. • Knowledge of various AWS Native Security tools, security frameworks, and CSPM tools. • Experience in security tools such as vulnerability scanners, IDS/IPS, SIEM, firewalls, and endpoint security monitoring. • Experience with threat detection and threat intelligence. • Experience securing large-scale SaaS-based enterprise applications. • Familiarity with security frameworks such as NIST and ISO 27001. • Proficient in Linux. • Strong communication, problem-solving, and collaboration skills. • Certifications such as CCSP, AWS Security, OSCP, or equivalent are preferred. • Experience with Cloudflare and/or AWS WAF configurations. • Experience with AWS Guard Duty and CrowdStrike. • Automation experience with one or more of the following: AWS CLI, Bash, Python, Ansible to verify security configurations and automate runbooks is a plus. • Experience with Microsoft Entra and Mimecast.