Let’s get started
By clicking ‘Next’, I agree to the Terms of Service
and Privacy Policy
Jobs / Job page
Security Operation Engineer image - Rise Careers
Job details

Security Operation Engineer

Position Overview

We are seeking a Security Operations Engineer to lead our vulnerability management program, oversee security assessments, and provide technical security expertise. This role will be crucial in maintaining our security posture through proactive security measures and third-party security programs.

Key Responsibilities

  • Develop and manage comprehensive vulnerability management program

  • Create and maintain threat models for GCP, cloud, and onprem linux systems 

  • Coordinate and oversee penetration testing engagements with external vendors

  • Establish and manage bug bounty program, including triage of submissions

  • Support security compliance efforts with technical knowledge and documentation

  • Track and report on security metrics and KPIs

  • Collaborate with engineering teams to remediate security findings

Required Qualifications

  • 3+ years of experience in security operations or vulnerability management

  • Experience managing vulnerability scanning tools and processes

  • Strong understanding of threat modeling methodologies

  • Experience coordinating penetration testing engagements

  • Technical knowledge to address complex security inquiries

  • Understanding of common security frameworks (SOC 2, ISO 27001, etc.)

  • US person

    • Natural Citizenship or Green Card

  • Position requires in office 5 days a week

Preferred Qualifications

  • Experience managing bug bounty programs

  • Familiarity with cloud security (AWS, GCP, Azure)

  • CISSP Certification

  • Experience with security tooling and automation (Snyk, SentinelOne)

  • Background in software development or infrastructure

Average salary estimate

$100000 / YEARLY (est.)
min
max
$80000K
$120000K

If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.

What You Should Know About Security Operation Engineer, Windsurf

Are you passionate about enhancing security and tackling challenges head-on? Join us as a Security Operations Engineer at our Mountain View office, where you'll be at the forefront of our vulnerability management program. In this dynamic role, you will oversee security assessments and deliver technical security expertise, all crucial for maintaining and strengthening our security posture. You'll dive deep into developing a comprehensive vulnerability management program, crafting and maintaining threat models for Google Cloud Platform, on-prem Linux systems, and more. Your leadership will guide penetration testing engagements with external vendors, and you'll play a key role in establishing and managing our bug bounty program, including the triage of submissions. Collaborating with our engineering teams will be essential as you help remediate security findings and support compliance initiatives through your technical knowledge and documentation. If you have over three years of experience in security operations or vulnerability management and possess a strong understanding of threat modeling methodologies, we want to hear from you! We're looking for someone who can handle complex security inquiries and understands common security frameworks such as SOC 2 and ISO 27001. Join us and make a significant impact in technology security while working in a collaborative environment five days a week.

Frequently Asked Questions (FAQs) for Security Operation Engineer Role at Windsurf
What are the main responsibilities of a Security Operations Engineer at our Mountain View location?

As a Security Operations Engineer in Mountain View, your primary responsibilities will include developing and managing a comprehensive vulnerability management program, creating threat models for various environments, and overseeing penetration testing engagements. You will also establish and manage our bug bounty program, support compliance efforts, and track security metrics, all while collaborating with engineering teams to address security findings.

Join Rise to see the full answer
What qualifications do I need to become a Security Operations Engineer with your company?

To qualify for the Security Operations Engineer position at our Mountain View office, you should have at least three years of experience in security operations or vulnerability management. A strong understanding of threat modeling methodologies, experience with vulnerability scanning tools, and familiarity with common security frameworks like SOC 2 and ISO 27001 are crucial. Additional preferences include experience with bug bounty programs and AWS or GCP security.

Join Rise to see the full answer
Is technical knowledge important for the Security Operations Engineer role at your Mountain View office?

Absolutely! Technical knowledge is vital for the Security Operations Engineer role as you'll need to address complex security inquiries. This includes maintaining security compliance documentation, coordinating penetration tests, and collaborating with engineering teams on remediation efforts. Your ability to navigate technical challenges will be essential to protect our digital infrastructure.

Join Rise to see the full answer
What tools and methodologies will I work with as a Security Operations Engineer at your company?

As a Security Operations Engineer in Mountain View, you will work with various security tooling and automation solutions such as Snyk and SentinelOne. You'll also be involved in vulnerability scanning processes, creating threat models, and implementing security frameworks to ensure robust protection against potential threats.

Join Rise to see the full answer
What is the work schedule like for a Security Operations Engineer at your Mountain View location?

The Security Operations Engineer position requires working in the office five days a week. This hands-on approach ensures that you can collaborate closely with team members and effectively manage security protocols and assessments in a timely manner, fostering a proactive security environment.

Join Rise to see the full answer
Common Interview Questions for Security Operation Engineer
What experience do you have with vulnerability management tools as a Security Operations Engineer?

In responding to this question, emphasize your hands-on experience with various vulnerability management tools. Highlight specific tools you've used, the processes you implemented, and how these contributed to risk reduction and enhanced security posture.

Join Rise to see the full answer
Can you describe a time when you led a penetration testing engagement?

Use this question to walk the interviewer through a specific penetration testing project. Discuss your role in coordinating the engagement, any challenges faced, and how you addressed findings to improve security outcomes.

Join Rise to see the full answer
How do you approach threat modeling for cloud environments?

Explain your methodology for threat modeling. Discuss the importance of understanding the environment, identifying potential threats, and how you prioritize vulnerabilities based on potential impact and likelihood.

Join Rise to see the full answer
What security frameworks are you familiar with, and how have you applied them in your work?

Mention specific security frameworks you’ve worked with, such as SOC 2 or ISO 27001. Discuss how you’ve applied these standards in developing security policies or managing compliance projects.

Join Rise to see the full answer
How do you stay current with security best practices and emerging threats?

Discuss your strategies for staying informed, such as attending workshops, following industry publications, and engaging with security communities. Show your commitment to continual learning in the security field.

Join Rise to see the full answer
What are the most important metrics you track in a vulnerability management program?

Describe key performance indicators (KPIs) like the number of vulnerabilities detected, the time to remediate, and the compliance rate with security policies. Explain how these metrics help guide your security strategies.

Join Rise to see the full answer
Can you give an example of how you remediated a significant security finding?

Provide a specific example of a security finding encountered, your analysis of the situation, and detailed steps taken to remediate the issue. Highlight the positive outcomes from your actions.

Join Rise to see the full answer
What role does collaboration play in security operations?

Explain the significance of teamwork in addressing security challenges. Discuss how you collaborate with engineering teams and other stakeholders to ensure comprehensive security implementation and responsiveness.

Join Rise to see the full answer
How would you handle a critical vulnerability found during a security assessment?

Outline the immediate steps you would take, including communication with stakeholders, prioritizing the issue, and implementing a rapid remediation plan. Emphasize your ability to remain calm under pressure.

Join Rise to see the full answer
What experience do you have with bug bounty programs?

Discuss your involvement with bug bounty programs, including how you've managed submissions, triaged findings, and the impact this initiative had on overall security posture. Consider sharing successes and lessons learned.

Join Rise to see the full answer
Similar Jobs
W
Windsurf Hybrid Mountain View
VIEW
Posted 9 days ago
W
Windsurf Hybrid Austin
VIEW
Posted 10 days ago
Photo of the Rise User
Adient Remote Bratislava Business Centre
VIEW
Posted 5 days ago

Join Adient as a Senior IAM Operations Analyst to oversee Identity Management operations within a significant global automotive seating company.

Photo of the Rise User
Eurofins Remote Iași, Romania
VIEW
Posted 3 days ago

Eurofins Scientific is looking for an Application Support Engineer to join their international team, focusing on application support in a remote setting.

G
GHR Hybrid Chicago
VIEW
Posted 5 days ago

Bank of America seeks a Cyber Security Analyst to enhance their application monitoring strategy with enterprise IT experience.

Photo of the Rise User
Myriad Genetics Hybrid 420 Wakara Way, Salt Lake City, UT 84108, USA
VIEW
Posted 8 days ago

Join Myriad Genetics Inc. as a Contract Information Services Tech I to support and educate healthcare providers on molecular diagnostics.

Photo of the Rise User
Visa Remote Foster City
VIEW
Posted 10 days ago
Photo of the Rise User
Visa Remote Austin
VIEW
Posted 10 days ago
Photo of the Rise User
Recursion Hybrid Salt Lake City, Utah, United States
VIEW
Posted 5 days ago

Join Recursion as an IT Engineering Intern to enhance IT workflows through data mining and automation.

C
Contact Government Services, LLC Remote No location specified
VIEW
Posted 6 days ago

Join CGS as a Senior IT Enterprise Architect to drive innovative solutions for government IT infrastructure.

W Windsurf

25 jobs
MATCH
VIEW MATCH
FUNDING
DEPARTMENTS
SENIORITY LEVEL REQUIREMENT
TEAM SIZE
No info
HQ LOCATION
No info
EMPLOYMENT TYPE
Full-time, on-site
DATE POSTED
April 4, 2025

Subscribe to Rise newsletter

Risa star 🔮 Hi, I'm Risa! Your AI
Career Copilot
Want to see a list of jobs tailored to
you, just ask me below!
Show me relevant jobs ASK RISA ✨
ABOUT RISE
FOR COMPANIES
REMOTE JOBS & MORE
LOOKING FOR A JOB?
FIND A JOB NEAR ME
POPULAR JOBS
Rise logo
Privacy Policy and Terms of Service
© 2021 Work Rise LLC. All rights reserved.
Proudly made in NYC.
CONNECT
Facebook Instagram LinkedIn Tiktok