Principal Security Operations Engineer
Car shopping is complicated. At CarGurus, we use data and technology to make it simple, giving people the tools they need to confidently find, buy, finance, or sell a car. The best part? Our work makes a real impact. We’re the most-visited car-shopping site in the US and we are growing fast in our international markets. Ready to come along for the ride?
Our Principal SecOps Engineer will report into our Vice President of Information Security and be responsible for securing the organization’s infrastructure. You will closely collaborate with infrastructure engineers to continuously improve and develop our digital security posture. This includes architecting, implementing and fine tuning security solutions to mitigate risks and threats to our systems. The engineer will be embedded in the Infrastructure team and empowered to make security architectural decisions.
Our SecOps Engineer will be building and developing our Intrusion Detection System (IDS), security logging, monitoring and acting as the main point of contact for the security incident response team (SIRT). Monitoring, triaging and remediating security events while simultaneously improving threat detection logic is imperative to helping reduce risk exposure to our business. You will be charged with managing all operational technical security risks and vulnerabilities.
What You'll Do:
- Design, architect, and implement defensive security controls across on-prem and cloud environments (AWS, Azure, GCP) in accordance with CIS Controls and NIST frameworks
- Work with infrastructure-as-code technologies to establish automated security configurations to support platform hardening, security controls and policies in the infrastructure deployment pipeline
- Manage Intrusion Detection System (IDS) and make necessary changes for accurate threat detection and remediation of identified issues
- Scan, triage and remediate security vulnerabilities while continuing to mature the vulnerability management program
- Manage third-party vulnerability and penetration testing engagements
- Build out our Security Information and Event Management (SIEM) solution, incident response, and forensic capabilities
- Act as the Incident Commander of the Security Incident Response Team (SIRT)
- Conduct quarterly production system and user audits
- Audit and configure new passwords and secrets in secrets management solution
- Play an active role in defining asset inventory security tagging and data classification
- Work with the infrastructure engineering and product teams to conduct and complete security architecture reviews and designs for the infrastructure requirements
- Collaborate with business stakeholders to develop business continuity and disaster recovery plans
- Evaluate new security technologies as landscapes evolve and change
- Help evangelize security best practices across the company
Technical Qualifications:
- Bachelor’s Degree or equivalent combination of education and experience in Information Security, Computer Science, Management Information Systems or related curriculum
- 5-7 years of experience securing cloud agnostic infrastructure (AWS, Azure, GCP) and datastores (MySQL, MongoDB, RDS) including use of automation and container deployment (Docker, Kubernetes, Terraform, Chef, Puppet)
- Extensive experience managing an IDS, SIEM and vulnerability management solutions in a hybrid environment
- Solid understanding of RBAC models and SSO solutions (SAML 2, OAuth 2, OIDC)
- Proficient in system hardening and patch management strategies
- Authored and maintained infrastructure security policies, standards, and procedures
- History of working on a Security Incident Response Team (SIRT) investigating events, triaging potential incidents, containing environments, conducting forensics analysis
- Familiarity with security frameworks and risk-based security programs
Non-technical Qualifications:
- Proactively tie technical security risks and to tactical organizational activities and goals
- Clearly articulate issues and communicate in an effective and personable manner
- Adjust quickly to the security needs of a highly agile organization
- Manage all aspects of large-scale projects to bring about organizational change
- Build relationships across multiple business units to inform and education security best practices
CarGurus Culture:
At CarGurus, we invest in our people’s professional growth with everything from learning and development programs to tuition reimbursement. Want to work on projects that expand your skill set without sacrificing your work/life balance? You got it. We also strive to provide perks and benefits that employees actually care about like free lunch, commuter subsidies, and more. That includes equity in the company—our way of showing that we want you here for the long haul. We work hard every day to build the world’s most trusted and transparent automotive marketplace, but trust and transparency don’t just apply to our consumers. They extend to our talent, too. We aim to create a workplace where everyone feels they can bring the ultimate expression of themselves and their potential—where you don’t just fit, you thrive. We don’t discriminate based on race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, gender identity, or sexual orientation. In addition to the US, CarGurus operates sites in Canada and the UK. We have offices in Cambridge, MA; Detroit, MI; Dublin, Ireland; San Francisco, CA and London, UK. Check out our careers page to learn more