Security Operations Engineer

United States Information Security

Blend helps lenders maximize their digital agility. Our digital lending platform is used by Wells Fargo, U.S. Bank, and other leading financial institutions to increase customer acquisition, improve productivity, and accelerate the delivery of any banking product across every channel. We process more than $3.5 billion in mortgages and consumer loans daily, helping millions of consumers get into homes and gain access to the capital they need to lead better lives.

As a Security Operations Engineer, you'll come to work to develop, deploy, and integrate defensive tooling and security procedures into our environment in order to detect, track, and resolve security incidents across the organization. You'll design alerts to detect threats as they occur and employ threat hunting methods to find abnormal or malicious behavior. In addition, you’ll automate the remediation of incidents in the environment and will help coordinate incidents from triage to post-mortem with stakeholders throughout the company as an on-call security engineer.

How you'll contribute: 

  • Deploy and maintain security operations tooling (both open source and commercial) to improve our defensive posture
  • Identify indicators of attack and create effective monitoring and alerting
  • Automate the triaging and remediation of security events
  • Investigate and manage security events and incidents, taking ownership of future mitigation projects that result from findings
  • Consult with our security compliance team during security audits in order to demonstrate our technical security capabilities
  • Conduct in-depth vulnerability assessments and information system auditing of assets (e.g. servers, Workstations, Network Appliances, Storage Devices, and Applications)
  • Mentor other members of the security team to help level-up those around you

Who you are: 

  • Passionate about the security space, staying well informed on attacker behavior
  • Extensive IR or SOC experience
  • IaaS experience (AWS a plus) 
  • Capable of leveraging Python to solve practical day-to-day security challenges
  • Practical experience with DevOps philosophy and toolsets (Ansible, Terraform, Jenkins, etc.)
  • Thorough understanding of networking and system administration

Bonus Points!

  • CCNA
  • GIAC Certified Incident Handler (GCIH)

Benefits and Perks: 

  • Meaningful equity and a 401(k) plan
  • Comprehensive health benefits
  • Wellness benefits covering a variety of wellness activities, gym memberships, fitness classes and more
  • Daily meal stipend during COVID-19 (lunch, dinner, snacks, and Pizza Fridays when working from the office)
  • Diversity and inclusion training 
  • Four months of paid parental or personal leave
  • Generous vacation policy, company-wide mental health days during COVID-19
  • Work from home office set up stipend and internet stipend during COVID-19
Blend is an equal opportunity employer that values diversity, inclusion and belonging. We do not discriminate on the basis of race, religion, color, national origin, gender, gender identity or expression, sexual orientation, age, marital status, veteran status disability status, or any other characteristic protected by law. We will consider for employment all qualified applicants with arrest and conviction records in a manner consistent with applicable law, including the San Francisco Fair Chance Ordinance.
If you have a disability and you wish to discuss potential accommodations related to applying for employment, please contact Blend at (650) 550-4810 or

Related Openings

Not what you were looking for? Check out our careers page, or get in touch.