Remote Senior Security Engineer II

Description:

• As a Senior Security Engineer II at Carta, you will be part of a team dedicated to unlocking the power of equity ownership for more people globally.
• You will be responsible for enabling automated security practices such as vulnerability management and detection & response without disrupting business processes.
• Your role will involve maintaining situational awareness across multiple cloud infrastructures, corporate environments, and data sensitivity levels in a growing environment.
• You will work on incorporating threat intelligence into proactive defense in an automated and reliable manner.
• Preserving a high level of customer privacy while establishing an effective response posture will be a key focus of your responsibilities.
• You will gather logs & telemetry from various sources, identify risks, create automations to enhance efficiency, and investigate and remediate threats.
• The role requires a passion for detection, response, automation, and monitoring, with a commitment to reducing risk in the organization and improving overall security.
• You will contribute to crafting the next generation of Carta’s security operations programs, ensuring a safe and secure workplace for all employees.

Requirements:

• Strong knowledge of cloud services and infrastructure like Google Cloud, GSuite, AWS, and Okta, along with experience in associated automation tools such as Terraform and GAM.
• Proficiency in attack models, particularly MITRE’s ATT&CK framework, and their defensive applications in enterprise settings.
• Minimum of 8-10 years of hands-on experience in security operations, emphasizing detection, response, identity/access, auditing, alerting, automation, orchestration, and threat hunting.
• Demonstrable experience in incident response practices, including creating rapid response automations for incident remediation.
• Ability to identify security visibility gaps and collaborate with engineering teams to ensure comprehensive log/signal availability and data normalization across diverse sources.
• Skills in administering SIEM solutions, security automation development (preferably in Python or with a SOAR platform), establishing and maintaining logging pipelines, parsing logs, creating monitoring alerts/detections, and implementing endpoint state attestation tools.
• Superior written communication skills adaptable to varied audiences.

Benefits:

• Carta offers a market competitive salary, equity for all full-time roles, exceptional benefits, and commission plans for applicable positions.
• The minimum cash compensation range for this role is $229,500 - $270,000 in San Francisco, Santa Clara, or New York City, and $218,025 - $256,500 in Seattle.
• The company is open to remote hires in specific locations and candidates with diverse technical backgrounds, including SRE and other complementary experiences.
• Carta is an equal opportunity employer committed to providing a positive interview experience for every candidate and values fairness, helpfulness, transparency, and leadership in building its teams.