IR & SecOps Team Leader

At JFrog, we’re reinventing DevOps to help the world’s greatest companies innovate -- and we want you along for the ride. This is a special place with a unique combination of brilliance, spirit and just all-around great people. Here, if you’re willing to do more, your career can take off. And since software plays a central role in everyone’s lives, you’ll be part of an important mission. Thousands of customers, including the majority of the Fortune 100, trust JFrog to manage, accelerate, and secure their software delivery from code to production -- a concept we call “liquid software.” Wouldn't it be amazing if you could join us in our journey?As an IR & SecOps Engineer Team Lead, you will lead the response process regarding cybersecurity threats facing the company. You will help further develop the Incident Response program that protects JFrog today and into the future. We are looking for an experienced, highly motivated leader who embraces the opportunity to influence and increase awareness of security across the organization.As a IR & SecOps Team Lead at JFrog you will...Plan, design, build, and execute JFrog’s security engineering operationsMentor and provide technical leadership to other members of the security teamIdentify emerging cybersecurity threats, misconfigurations, and vulnerabilities by conducting continuous monitoring and log analysis related to JFrog CloudPerform incident triage by determining scope, urgency, and potential impact, and identify specific vulnerabilities while recommending actions for expeditious remediationPartner with the engineering teams in the company to drive the security mission across the organizationProvide on-call security support as neededTo be a IR & SecOps Team Lead at JFrog you need...5+ years of relevant industry experience in IR, solid knowledge of information security principles and practicesHands-on experience with cloud (AWS/GCP/Azure), preferably with containerized environments.Hands-on experience with SIEM and SOAR Experience with Endpoint Protection (EDR)Experience with least privilege principle platformsExperience with Vulnerability Management platformsExperience with at least one scripting language (Python/Powershell/Bash)Familiarity with cloud security platforms such as CSPM/DSPM/SSPM/CNAPFamiliarity with DevSecOps principles such as CI/CD or IaC - an advantageFamiliarity with workload/runtime protection - an advantage