Information Security Engineer

Responsibilities:

• Support and execute security incident response activities, including triage, investigation support, containment coordination, lessons learned, and corrective action tracking
• Develop and maintain incident response playbooks, runbooks, and escalation paths; participate in and help run tabletop exercises
• Coordinate security investigations with DevOps, IT, and Engineering teams; track actions through to closure and document outcomes

Requirements:

• 5+ years of experience in Information Security, Security Engineering, or Security Operations roles within a SaaS or cloud-centric environment
• Hands-on experience supporting incident response and investigations, including building/using runbooks and participating in post-incident reviews
• Ability to collaborate effectively with technical teams (DevOps, Engineering, Observability, AppSec) to drive remediation and measurable risk reduction

Preferred Qualifications:

• Experience in compliance-driven environments (FedRAMP, GovRAMP, SOC 2, ISO 27001, NIST 800-53) and supporting evidence collection/operational readiness
• Experience with EDR, email security, and/or SaaS security controls (tooling specifics vary)
• Scripting/automation experience (Python, Bash, PowerShell) and comfort integrating systems via APIs