Security Engineer, Detection Response
Vercel is the Frontend Cloud, focusing on building, scaling, and securing a faster, personalized web.
Projects
About Vercel
Vercel provides a platform for frontend development, offering solutions for deployment, scaling, and security. It supports a wide range of frameworks and tools, enabling developers to deploy their applications globally with instant previews and automatic HTTPS. Vercel emphasizes performance, security, and developer experience, with features like zero-config streaming, optimized compute, and privacy-friendly analytics.
Skills
About the Role
You will manage Vercel's internal Corporate Security posture, monitor for security anomalies, build detections and visibility mechanisms, and ensure the overall security of internal systems. You will work closely with various teams to support audits, optimize visibility, and handle security incidents as they arise.
Requirements
- Extensive experience in security operations, including SIEM management, security logging, and detection engineering
- Strong knowledge of AWS infrastructure and cloud security best practices
- Experience with GitHub administration and security controls
- Proficiency in SQL for data analysis and security investigations
- Hands-on experience with incident response, including detection, triage, and remediation
- Strong endpoint management skills across multiple operating systems (Mac, Windows, Linux)
- Proficiency in at least one scripting language (Python, Bash) and one compiled language (Rust, Go)
- Familiarity with serverless functions and API security is a plus
Responsibilities
- Monitor and respond to security alerts across multiple channels, including managed SOC escalations
- Maintain visibility and logging infrastructure, ensuring effective SIEM operations
- Support security audits for PCI, SOC2, ISO, and other compliance frameworks, gathering evidence and collaborating with Engineering, GRC and the broader Security Division
- Proactively enhance security operations by developing and deploying new detections, security tooling and managing key security partners
- Work on security investigations, incidents, and urgent requests, and contribute to the build-out and continuous improvement of the on-call process
- Act as a guardian to enable the business to navigate risk-based changes
- Manage and enhance email security, endpoint security posture (EDR), GitHub administration best practices, and internal security tooling
Benefits
- Competitive compensation package, including equity
- Inclusive Healthcare Package
- Learn and Grow - mentorship and events
- Flexible Time Off
- WFH budget and gear provided
