Senior SOC Engineer

Vollzeit
Hyderabad, Telangana, India
vor 10 Monate

Yext (NYSE: YEXT) helps organizations build digital experiences across any channel on our open and composable platform. The Yext Digital Experience Platform collects and organizes content to deliver AI-led experiences for any organization’s customers, employees, or partners. For more than 15 years, thousands of companies worldwide have trusted Yext to create seamless customer experiences at scale across search engines, websites, mobile apps, and hundreds of other digital touchpoints. Learn more at yext.com.

With the explosion of information and data online, search has never been more important. However, while the world of consumer search has innovated over time, enterprise search has not. In fact, the majority of enterprise search is powered by outdated keyword technology that only scans for keywords and delivers a list of hyperlinks rather than actually answering questions. Yext, the AI Search Company, offers a modern, AI-powered Answers Platform that understands natural language so that when people ask questions about a business online they get direct answers – not links.We have a big, audacious mission to transform the enterprise with AI search. To achieve that, we need bright minds and diverse perspectives to join our growing company and help us continue to disrupt an industry. Does this sound like you?Yext is actively seeking a Lead Security Engineer for the Security Operations Center (SOC) division reporting to the Director of Product & Application Security within the Cyber Security Office. This role will serve as a technical team lead, maturing our Cyber Security Incident Response operations across the organization. This role will enable the product, engineering, IT and security teams to make the right security & privacy decisions by performing environment-based assessments and providing guidance around security incident operations and escalation protocols, all the while establishing and maturing SOC best practices. In this role you will also assist other Cyber Security leaders in driving a culture of awareness within Yext, promote Security best practices and support compliance initiatives.

What You'll Do

  • Drive the maturity of the Incident Response Program by identifying gaps and developing optimized solutions.
  • Build and manage a business plan to drive operational resiliency for Yext.
  • Develop and implement a data-driven technical roadmap that will define the maturity of Security Operations.
  • Architect, design, and support the implementation of system logging and SIEM ingestion channels.
  • Act as the technical subject matter expert for performing threat modeling exercises identifying gaps in detection capabilities.
  • Create and manage cybersecurity processes, procedures and playbooks ensuring alignment with new and existing policies and standards.
  • Manage Incident management practice and triage of security incidents and drive them to response and recovery.
  • Champion the development of SOC engineers by providing hands-on training, mentorship, and guidance.
  • Support and assist with Business Continuity and Disaster Recovery exercises as they relate to Security Operations.
  • Oversee technical delivery, assessing and continually improving output and ensuring processes are developed and adhered to in order to drive operational excellence.
  • Provide administrative direction and support for daily operational activities.
  • Ensure SLA compliances, process adherence, process improvement to meet operational objectives.
  • Providing CISO/Senior Management with a realistic overview of risks and threats in the enterprise environment.

What You Have

  • 5-7 years of relevant work experience in Security Operations, IT Security or Security Engineering teams.
  • Demonstrable record of delivering critical security solutions across multiple stakeholder groups with complex priorities.
  • In-depth understanding of secure design principles and technical architecture using AWS, GCP and On-premise environments.
  • In-depth knowledge of Linux, bonus points for experience with HashiCorp Nomad.
  • Understanding of IaC concepts and assessing the security gaps thereof.
  • In-depth knowledge of modern security concepts and how to apply them.
  • Experience in designing, implementing and measuring relevant security and technology management critical success factors, key performance indicators, and metrics.
  • Required hands-on experience responding to security incidents and leading Incident Response operations.
  • Experience in DFIR, building tabletop scenarios, and ability to mentor junior engineers.
  • Practical knowledge of threat landscape analysis, common attacker techniques and mitigations using the MITRE ATT&CK framework.
  • Experience in managing expectations and maintaining relationships with the organization, vendors, and customers.
  • Ability to effectively communicate complex security concepts and recommendations to diverse stakeholders, including infrastructure, engineering, and product teams.
  • Self-motivated team player that is energetic, with excellent interpersonal and organizational skills.
  • Experience with FedRAMP, ISO27k and SOC2 is a plus.

In today's dynamic threat environment, software firms are increasingly acknowledged as a highly-targeted industry for cyberattack due to the confidentiality and sensitivity of customer data, as well as the immediacy in which that data is needed to perform their operational duties. Given Yext’s vital role within the software ecosystem, protection of data is paramount in ensuring high-trust relationships with customers, partners and vendors.

Perks and BenefitsAt Yext, we take pride in our diverse workforce and prioritize creating an engaged and connected working environment. Our ambitious mission is to transform the enterprise with AI search, and we know that to achieve that, we need a global team of innovators, visionary thought leaders, and enthusiastic collaborators passionate about making a meaningful impact in the world and contributing to an extraordinary culture.

We believe that people do their best when they feel their best — and to feel their best, they must be well-informed, fuelled, and rested. To ensure our employees are at their best, we offer a wide range of benefits and perks, including:

  • Performance-Based Compensation: We offer an attractive bonus structure and stock options for eligible positions.
  • Comprehensive Leave Package: Our leave package includes Paid Time Off (PTO), Parental Leave, Sick Leave, Casual Leave, Bereavement Leave, National Holidays, and Floating Holidays to ensure a healthy work-life balance.
  • Health & Wellness Offerings: We provide medical insurance with 7L coverage, including enhanced parental and outpatient department (OPD) coverage for you, your spouse, two dependent children, and two parents (as applicable and subject to eligibility requirements).
  • Relocation Benefits: We offer relocation assistance and an allowance to eligible candidates to help ease your transition.
  • World-Class Office & Building Amenities: Our office has a top-notch infrastructure, including gaming rooms, a plush pantry, and breakout areas.

#LI-RD1

Yext is committed to building an inclusive and diverse culture where every person is seen, heard and valued. We believe in equal employment opportunity and welcome employees and applicants of all races, colors, ethnicities, religions, creeds, national origins, ancestries, genetics, sexes, pregnancy or childbirth, sexual orientations, genders (including gender identity or nonbinary or nonconformity and/or status as a trans individual), ages, physical or mental disabilities, citizenships, marital, parental and/or familial status, past, current or prospective service in the uniformed services, or any characteristic protected under applicable law. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. It is Yext’s policy to provide reasonable accommodations to people with disabilities as required by law. If you have a disability that requires an accommodation in completing this application, interviewing, or participating in the employee selection process, please complete this form.