hero

Make your next big move

65
companies
278
Jobs

Security Engineer - Security Operations

G2

G2

Operations
United States · Remote
Posted on Jul 20, 2024

About G2 - Our People

G2 was founded to create a place where people will love to work. We strive to create meaning in work and provide more than just a job: a true calling. At the heart of our community and culture are our people. Our global G2 team comes from a wide range of backgrounds and experiences, and that’s what makes our G2 community strong and vibrant. We want everyone to bring their authentic selves to work, and we do this through our company and team events, our G2 Gives charitable initiatives, and our Employee Resource Groups (ERGs).

Our employee-led, leadership-supported ERGs celebrate the diversity of our team, foster inclusivity and belonging, and create a space to connect to each other. Through connections and understanding, we build a stronger and more dynamic global team and help every person reach their personal peak.

We support our employees by offering generous benefits, such as flexible work, ample parental leave, and unlimited PTO. Click here to learn more about our benefits.

About G2 - The Company

When you join G2, you join the global team behind the largest and most trusted software marketplace. Every month, 5.5 million people come to G2 to inform smarter software decisions based on honest peer reviews. Authenticity is our focus, and every day we help thousands of companies, and hundreds of employees, propel their potential. Ready for meaningful work that starts and ends with compassion and heart? You’ve come to the right place.

G2 is going through exciting growth! We’ve recently secured our Series D funding of $157 million, which will further allow us to grow and develop our product and people. Read about it here!

About The Role

G2 is looking for a Security Engineer with AWS expertise to strengthen G2's cloud security posture, manage vulnerabilities, conduct penetration testing, mature SIEM solutions, and lead incident response efforts.

In This Role, You Will Handle:

  • Vulnerability Management:
    • Implement and manage vulnerability scanning tools in G2 environments
    • Analyze scan results and prioritize remediation efforts
    • Collaborate with IT teams to address identified vulnerabilities
    • Develop and maintain vulnerability management processes and reporting
  • Penetration Testing:
    • Conduct regular penetration tests on G2 infrastructure and applications
    • Utilize AWS-specific tools and methodologies for security assessments
    • Document findings and provide actionable recommendations
    • Work with development teams to validate and implement security fixes
  • SIEM Implementation and Management:
    • Design and implement SIEM solutions compatible with G2 environments (e.g., AWS Security Hub, Coralogix, Splunk, ELK stack)
    • Develop and tune correlation rules and alerts
    • Create dashboards and reports for security metrics and KPIs
    • Ensure log ingestion from all critical G2 services and resources
  • Incident Response:
    • Develop and maintain incident response plans for G2 environments
    • Lead incident investigations and root cause analyses
    • Coordinate with cross-functional teams during security incidents
    • Conduct post-incident reviews and implement lessons learned
  • AWS Security:
    • Implement AWS security best practices and services (e.g., IAM, Inspector, KMS, GuardDuty, Security Hub)
    • Ensure compliance with all relevant standards in AWS deployments
    • Automate security processes using AWS native tools and third-party solutions
  • Documentation
    • Responsible for the maintenance of security and operations procedure documentation.
    • Develop, document and implement information security procedures to enforce information security standards.
  • Personal Development
    • Research and stay up to date with current information security topics, information technology, equipment, and/or systems.

Minimum Qualifications:

We realize applying for jobs can feel daunting at times. Even if you don’t check all the boxes in the job description, we encourage you to apply anyway.

  • 5+ years of experience in information security, with at least 3 years focused on AWS
  • Proven experience in vulnerability management, penetration testing, SIEM, and incident response
  • Strong knowledge of AWS security services and architectural best practices
  • Proficiency in scripting languages (e.g., Python, Bash) and security automation
  • Familiarity with compliance frameworks (e.g., NIST, ISO 27001, CIS)
  • Excellent analytical, problem-solving, and communication skills
  • Ability to think on your feet, multi-task, prioritize, and work under pressure
  • Can effectively communicate complex issues to both technical and non-technical individuals
  • Ability to be self-directed

What Can Help Your Application Stand Out:

  • AWS certifications (e.g., Security Specialty, Solutions Architect)
  • Other Technical certifications, e.g. CISSP, CEH, GSEC, Security+ are a plus
  • Experience in other technical areas (systems, networking, programming, etc)
  • Have used these or similar security tools; Cloudflare, Cobalt, Coralogix, Github, OKTA, Portswigger, Snyk, Sysdig, Tenable, Wiz

Our Commitment to Inclusivity and Diversity

At G2, we are committed to creating an inclusive and diverse environment where people of every background can thrive and feel welcome. We consider applicants without regard to race, color, creed, religion, national origin, genetic information, gender identity or expression, sexual orientation, pregnancy, age, or marital, veteran, or physical or mental disability status. Learn more about our commitments here.

--

For job applicants in California, the United Kingdom, and the European Union, please review this applicant privacy notice before applying to this job.