Security Operations Engineer

San Francisco, New York Information Security Full-time

Blend helps lenders maximize their digital agility. Our digital lending platform is used by Wells Fargo, U.S. Bank, and other leading financial institutions to increase customer acquisition, improve productivity, and accelerate the delivery of any banking product across every channel. We process more than $3.5 billion in mortgages and consumer loans daily, helping millions of consumers get into homes and gain access to the capital they need to lead better lives.

As a Security Operations Engineer, you'll come to work to develop, deploy, and integrate defensive tooling and security procedures into our environment in order to detect, track, and resolve security incidents across the organization. You'll design alerts to detect threats as they occur and employ threat hunting methods to find abnormal or malicious behavior. In addition, you’ll automate the remediation of incidents in the environment and will help coordinate incidents from triage to post-mortem with stakeholders throughout the company as an on-call security engineer.

How you'll contribute:

  • Deploy and maintain security operations tooling (both open source and commercial) to improve our defensive posture
  • Identify indicators of attack and create effective monitoring and alerting
  • Automate the triaging and remediation of security events
  • Investigate and manage security events and incidents, taking ownership of future mitigation projects that result from findings
  • Consult with our security compliance team during security audits in order to demonstrate our technical security capabilities
  • Conduct in-depth vulnerability assessments and information system auditing of assets (e.g. servers, Workstations, Network Appliances, Storage Devices, and Applications)
  • Mentor other members of the security team to help level-up those around you

Who you are:

  • Passionate about the security space, staying well informed on attacker behavior
  • Extensive IR or SOC experience
  • IaaS experience (AWS a plus) 
  • Capable of leveraging Python to solve practical day-to-day security challenges
  • Practical experience with DevOps philosophy and toolsets (Ansible, Terraform, Jenkins, etc.)
  • Thorough understanding of networking and system administration

Bonus Points!

  • CCNA
  • GIAC Certified Incident Handler (GCIH)

Benefits and Perks:

  • Meaningful equity and a 401(k) plan
  • Comprehensive health benefits
  • Wellness benefits covering a variety of wellness activities, gym memberships, fitness classes and more
  • Daily meal stipend for non-regularly remote employees during COVID-19 (and lunch, dinner,snacks, and Pizza Fridays provided in offices outside of COVID-19)
  • Diversity and inclusion training 
  • Weekly mindfulness meditation class
  • Weekly remote company all-hands 4 months of paid parental or personal leave
  • Flexible work schedule, with open vacation policy and companywide mental health days during COVID-19
  • Work from home office set up stipend and internet stipend during COVID-19

Blend is an equal opportunity employer that values diversity, inclusion and belonging. We do not discriminate on the basis of race, religion, color, national origin, gender, gender identity or expression, sexual orientation, age, marital status, veteran status disability status, or any other characteristic protected by law. We will consider for employment all qualified applicants with arrest and conviction records in a manner consistent with applicable law, including the San Francisco Fair Chance Ordinance.

Related Openings

Not what you were looking for? Check out our careers page, or get in touch.