Senior Security Engineer - Blue Team

USE Insider

4+ Years | Istanbul, İstanbul, Türkiye (Remote) | Full Time | 8 months ago

Apply Now

Job Summary

Insider, a B2B SaaS company specializing in AI-native customer experience and marketing, seeks a Senior Security Engineer - Blue Team. This role involves managing and maintaining SIEM tools, creating and optimizing detection rules, analyzing threats using various data sources, and integrating the MITRE ATT&CK framework. The engineer will actively participate in incident response, reduce false positives, manage logs from diverse security products, and develop security metrics and reports. Responsibilities also include managing database and EDR tools, conducting cyber intelligence and threat hunting, and participating in tabletop exercises. The company emphasizes innovation, agility, and a collaborative work environment, working with leading global brands.

Must Have

Bachelor's degree in Computer Engineering, Electronics Engineering, or equivalent
Minimum 4 years of experience in IT Security Architecture & Services
Strong knowledge of WAFs, SIEM, SOAR, EDR, ETP, Vulnerability Scanning Tools, Deception Technologies
Strong understanding of Firewall, IPS/IDS
Knowledge of Syslog, HTTP, and Database log formats
Experience with Unix and Windows operating systems
Deep understanding of the attack lifecycle
Proficiency in Python or other scripting languages
Strong analytical, critical thinking, and problem-solving skills
Ability to communicate technical details effectively

Good to Have

Hands-on experience in one of the SOAR tools (e.g., XSOAR, Resilient)
Holding or willing to take AWS Security Specialist Certificate
Preferably holding industry-recognized certificates (e.g., CEH, AWS Sec)
Splunk Core Certified Power User is a plus
Proactive, curious mindset with a keen interest in researching emerging cybersecurity threats

Perks & Benefits

Tech Talks and Dev Talks
Hackathons, programming challenges, and coding competitions
Free access to Laracasts, Egghead, LinkedIn Learning, Blinkist, Masterclass, and Spotify
Inclusive Private Health Insurance
Smart Work Model for food and bill expenses
Team Activities
No Dress code
Remote Work in Turkey

Job Description

Before jumping in on all the information about the role and what you can bring to the table, let us introduce ourselves real quick.

About us

We are Insider, a B2B SaaS company that drives growth for its clients around the world. How are we achieving this? We are the #1 AI-native platform for Customer Experience and Marketing—offers marketers a single platform to deliver unique experiences per person, drive profitable growth, and unleash peak productivity and efficiency. Our platform connects data across channels, predicts future behavior with AI, and individualizes experiences from a single platform.

We have just celebrated our $500M Series E funding round, led by General Atlantic. Before this, we’ve unlocked unicorn status following our Series D round. We are backed by top-notch investors, including Sequoia Capital, QIA, Riverwood, and Endeavor Catalyst, and trusted by 1200+ brands from high-growth startups to the most prestigious Fortune 500 companies such as Samsung, Coca-Cola, Nike, L’Oreal, Singapore Airlines, Virgin, Nestle, Nissan, Lenovo, Puma, IKEA, Allianz, Dominos, CNN, and the list goes on.

Having unlocked unicorn status, Insider was congratulated for becoming one of the only woman-founded, women-led B2B SaaS unicorns in the world, to achieve $200M in CARR (Committed Annual Recurring Revenue). Insider was named a leader in The Forrester Wave for Cross-Channel Campaign Management 2021, and Leader in the IDC MarketScape: Worldwide Omnichannel Marketing Platforms for B2C Enterprises 2023 Assessment. The company has been recognized in The Top 1% of all software companies worldwide in G2’s 2024 Software Awards, and named in The Top 10 Best Software Products with the most #1 rankings alongside other software legends like Google, Zoom, and Monday.com. According to G2’s Spring’24 reports. Insider is also the #1 G2 Leader in 6+ categories, including Customer Data Platforms (CDP), Personalization Engines, Personalization Software, Mobile Marketing, Customer Journey Analytics, and e-commerce Personalization.

When our team founded Insider, they not only sought to create a product company but also to build the most socially progressive technology community in the world. Through our corporate social responsibility initiatives like 100Projects SheCodes, SheLeads, and SheMarkables, our community has committed to scaling its impact into our communities across 27+ countries, spearheading transformative projects in areas such as health, education, farming, animal rights, and increasing the proportional representation of women in STEM careers.

Behind all these achievements, there is an exceptionally talented and passionate team across 27+ countries that moves fast and agile, creates cutting-edge products, and focuses on making an impact. If you want to join us on this journey, just keep reading.

And now? Now we are looking for a Security Engineer - Red Team who wants to take their career one step further. If you think you are one of those people, here you will have the chance to work with the world's leading brands with Artificial Intelligence & Machine Learning technologies. Right now, while you are reading this, we are sending an average of 2.2 billion requests and almost 2 billion instant notifications to more than 450 servers a day. On the Artificial Intelligence and Predictive side, we have more than 100 TB of historical data. We do not wait for jobs or opportunities to come to our feet, we create them. We have now reached 25% of global users. If all these interests you, read on for more!

Our Engineers and Software Developers always think with an innovative perspective, taking advantage of the inexhaustible power of the digital world. They create impressive and intelligent products like a true artist. Our Product and Development teams are located in our Istanbul and Ankara offices, so we produce and develop the technology we export to the world in our own country. As Insider, we believe in cooperation and adapting the innovations brought by technology by acting fast. We work closely with other Departments with agile teams, and we are not afraid of getting our hands dirty. As we said; we do not wait for jobs or opportunities to come to our feet, we create them ourselves. You can check our Tech Stacks here!

We want you to join us while we are taking a step into the future if you:

Bachelor's degree in Computer Engineering, Electronics Engineering, or equivalent.
Minimum 4 years of experience in IT Security Architecture & Services.
Strong knowledge and hands-on experience with security technologies such as WAFs, SIEM, SOAR, EDR, ETP, Vulnerability Scanning Tools, and Deception Technologies.
Hands-on experience in one of the SOAR tools (e.g., XSOAR, Resilient) is preferred.
Strong understanding of network security devices (e.g., Firewall, IPS/IDS).
Knowledge of Syslog, HTTP, and Database log formats.
Experience with Unix and Windows operating systems.
Deep understanding of the attack lifecycle and its stages.
Proficiency in Python, or other scripting languages.
Holding or willing to take AWS Security Specialist Certificate
Preferably holding industry-recognized certificates (e.g., CEH, AWS Sec).
Splunk Core Certified Power User is a plus.
Strong analytical, critical thinking, and problem-solving skills.
Ability to communicate technical details effectively to various stakeholders.
A proactive, curious mindset with a keen interest in researching emerging cybersecurity threats and trends.

A Security Engineer in Insider day in and day out:

Management and Maintenance of SIEM Tools: Configuring, monitoring, and enhance SIEM functionalities.
Rule Creation and Optimization: Developing rules, reports, dashboards, and use cases to detect threats and attacks.
Threat Analysis: Analyzing threats using logs, IPS/IDS, cyber intelligence reports, and other data sources.
MITRE ATT&CK Framework Integration: Reviewing existing rules and developing new attack detection scenarios.
Incident Response: Taking an active role in detecting, analyzing, and mitigating security incidents.
False Positive Reduction: Working with CDC Engineers to optimize detection logic and minimize false positives.
Log Management: Import and troubleshooting logs from various security products and company-wide log sources.
Security Metrics & Reporting: Defining and monitoring key security metrics, creating dashboards and reports.
Database and EDR Tool Management: Maintaining, optimizing, and enhance security configurations.
Cyber Intelligence & Threat Hunting: Staying updated with the latest cyber threats and integrating threat intelligence into security operations.
Tabletop Exercises: Actively participating in security drills and follow up on action items.

While exporting our technology to the world, we offer you:

“Tech Talks” with famous and groundbreaking people from the software world, “Dev Talks” where our Software Developers talk about their career steps, and many events where groundbreaking ideas are discussed,
Hackathons we organize inside that push the boundaries, programming challenges, and coding competitions,
free access to exclusive services such as Laracasts, Egghead, LinkedIn Learning, Blinkist, Masterclass, and Spotify,
Inclusive Private Health Insurance,
Smart Work Model side benefits to support food and bill expenses,
The infamous Team Activities that are bursting with fun,
No Dress code! This is a fast and innovative startup, you can wear whatever you want.
Remote Work! Work anywhere you'd like in Turkey.

We provide equal opportunity in a zero-discrimination workplace and not just welcome but also embrace everyone without regard to sex, race, color, nationality, religion, gender identity, sexual orientation, disability status, citizenship, or marital status.

Please follow Insider on LinkedIn, Instagram, Youtube, and Medium!

12 Skills Required For This Role

Saas Business Models Communication Problem Solving Agile Development Incident Response Aws Unix Threat Intelligence Python Monday Splunk Machine Learning

Similar Jobs