Staff Security Operations Engineer

About Us

How This Role Impacts Live Oak and its People

As a Staff Security Engineer, you will build security engineering solutions that enhance our detection capabilities while also leading critical incident response activities, ensuring Live Oak Bank can both prevent security threats and effectively respond when incidents occur, protecting our customers, employees, and financial systems.

What You’ll Do at Live Oak

• Build Custom Security Detection Solutions: Develop custom software solutions to automate threat detection, integrate security tools, and enhance existing monitoring services.
• Lead Incident Response: Coordinate and execute technical response activities during security incidents, serving as the primary technical responder.
• Develop Security Automation: Create software solutions that automate security operations tasks, incident response workflows, and post-incident remediation activities.
• Engineer Crisis Management Tools: Build tools and systems to support crisis communication, stakeholder notifications, and regulatory reporting during security events.
• Implement Security as Code: Develop security controls that integrate with CI/CD pipelines and align with DevOps practices to enforce security standards programmatically.
• Design and Execute Simulations: Create and lead realistic security incident exercises to test and improve our response capabilities and technical readiness.
• Build SecOps Infrastructure: Optimize automation tools and scripts (e.g., in Python, Go) to manage detection workflows, incident playbooks, and security self-service capabilities.
• Document Incident Procedures: Write high-quality technical documentation for incident response playbooks, investigation techniques, and recovery procedures.
• Analyze Security Incidents: Perform technical forensic analysis of security events and develop detection improvements to prevent similar incidents.

How You’ll Do It           

• Respond to Active Threats: Execute technical response procedures during active security incidents, including investigation, containment, and eradication. 
• Develop Detection Code: Write secure, efficient code to identify threats and anomalies across our cloud infrastructure and application
• Drive Incident Communications: Articulate complex security information clearly to executive leadership during high-pressure security events.
• Lead Recovery Operations: Coordinate technical recovery activities following security events and incidents, ensuring systems are secured before returning to production.
• Collaborate Across Teams: Work closely with engineering, infrastructure, and business teams during both daily operations and security incidents.
• Implement Automated Controls: Create infrastructure as code modules that enforce security standards and automate policy enforcement.
• Design Incident Metrics: Develop KPIs and reporting mechanisms to measure and improve incident response effectiveness.
• Run Post-Incident Reviews: Lead technical post-mortem activities to identify improvements and implement preventative measures.
• Integrate Security Tools: Build APIs and automation that connect security systems with monitoring, ticketing, and communication platforms.

Required and Preferred Experience

• Required: 7+ years in security engineering with 3+ years hands-on incident response experience in regulated industries
• Required: Demonstrated experience leading technical incident response activities during active security events
• Required: Strong software engineering background with experience developing security detection and response tools
• Required: Hands-on experience with AWS security tools and infrastructure as code implementation
• Required: Track record of balancing engineering projects with incident response responsibilities
• Preferred: Experience leading crisis management activities in financial services organizations
• Preferred: Background in digital forensics and incident investigation in cloud environments
• Preferred: Experience implementing security controls in CI/CD pipelines and DevOps environments
• Preferred: History of developing custom security tools that enhance incident detection and response

Skills

• Incident response leadership and execution
• Crisis management and communication
• Security automation and scripting
• Infrastructure and security as code
• Detection engineering
• Problem-solving under pressure
• Technical documentation and playbook development
• Cross-team coordination during incidents 

Certifications

• GCIH, GCIA, or equivalent incident response certification (preferred)
• CISSP, CCSP, or equivalent security certification (preferred)
• AWS Certified Security - Specialty (preferred)
• GCFA, EnCE, or equivalent forensics certification (preferred)

Education

• Bachelor’s degree in computer science, Cybersecurity, or related field

Our Values

• Dedication: Possess a deep commitment to Live Oak Bank’s mission and core values, exemplified through a strong work ethic, adaptability and pride in your work.

• Ownership: Take initiative to deliver positive results by proactively and creatively solving problems, while maintaining a high degree of quality.

• Respect: Treat everyone wi.th courtesy, politeness, and kindness.

• Innovation: Embrace fresh ideas and fearlessly contribute new solutions to emerging or existing problems.

• Teamwork: Foster collaboration, accountability, and trust with others and understand that together, we do more

For a detailed overview of our employee benefits please visit: http://www.liveoakbank.com/careers/

Live Oak Bank is an Affirmative Action and Equal Opportunity Employer, Minorities/Women/Veterans/Disabled. We consider applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, genetic information, veteran status or disability. Equal access to programs, service and employment is available to all persons. Those applicants requiring reasonable accommodation to the application and/or interview process should notify human resources at careers@liveoak.bank

EEO is the Law

Commitment to Diversity
Live Oak Bank is committed to creating and maintaining a workplace in which all employees have an opportunity to participate and contribute to the success of the business and are valued for their skills, experience, and unique perspectives. This commitment is embodied in company policy and the way we do business at Live Oak Bank and is an important principle of sound business management.

The base pay range for this position is $140,000.00 - $200,000.00 per year. Compensation may also include annual bonuses and long-term incentives, subject to various metrics and company policy. A candidate’s salary is determined by several factors including travel, relevant work experience or skills and expertise.

Please note that we provide at least the minimum requirement of paid sick leave to our employees who reside in states that require employer-paid sick leave, including but not limited to Arizona, California, Colorado, District of Columbia, Maine, Maryland, Massachusetts, Michigan, Nevada, New Jersey, New Mexico, New York, Oregon, Rhode Island, Vermont, and Washington.