Dubbed an "open-source unicorn" by Forbes, Confluent is the fastest-growing enterprise subscription company our investors have ever seen. And how are we growing so fast? By pioneering a new technology category with an event streaming platform, which enables companies to leverage their data as a continually updating stream of events, not as static snapshots. This innovation has led Coatue Management, Altimeter Capital and Franklin Templeton to join earlier investors Sequoia Capital, Benchmark, and Index Ventures in the recent Series E financing of a combined $250 million at a $4.5B valuation. Our product has been adopted by Fortune 100 customers across all industries, and we’re being led by the best in the space—our founders were the original creators of Apache Kafka®. We’re looking for talented and amazing team players who want to accelerate our growth, while doing some of the best work of their careers. Join us as we build the next transformative technology platform!
About the role:
Primary emphasis for the Security Engineer role will be placed on building tools and metrics for the use of the Information Security team. Additional responsibilities for the role include evaluating the effectiveness of existing security controls and recommending and implementing new security controls. Additional duties may include monitoring security events, current state of systems, and performing root cause analysis of security incidents. This candidate should possess an understanding of cloud security controls and architecture. (AWS, GCP, Azure, etc.) along with a fundamental understanding of traditional security tools to include Security Design and Architecture, Threat and Vulnerability Management, Penetration Testing, Endpoint Security.
Key Responsibilities: Design and implement tools to support the information security organizationDefine key performance indicators for measurement of information security initiativesCreate monitoring and reporting dashboards for use within the enterpriseParticipate in the vulnerability management processesDrive cross-team projects to completionEvaluate the effectiveness of existing security controlsAdvise business stakeholders of security risks and make recommendation for risk mitigationParticipate in maturing existing security controlsPerform tuning and automation of data feeds and responseAnalyze potential infrastructure and application security incidents to determine if incident qualifies as a legitimate security breachPerform security incident investigations, determining the root cause of the security incident and preserving evidenceInterface with technical and business personnel on other teams as requiredParticipate in knowledge sharing with other analysts and develop solutions efficiently
Required Skills:Strong analytical and problem solving skillsAbility to manage and track multiple tasks, and work independently or in a teamExperience with an effective metrics and reporting program including KPI measurementBroad knowledge of IT Security technologies, ideally related to Cloud infrastructureExperience with Security Information and Event Management (SIEM) tools like Elastic, ArcSight, QRadar, Splunk, Logrythm, etc.Experience with security controls used to support an effective software development lifecycleExperience with Vulnerability scanners like Nessus, Rapid 7, Qualys, etc.Understanding of Kubernetes
Nice to have Skills: Current Security OSCP, GIAC, GCIH, CISSP, or similar strongly desiredKnowledge of Networking protocols and technologies, e.g. TCP/IP, Firewalls, Routers, etc.Knowledge of OWASP security model and Web application securityFamiliarity with SOC operations and controlsBatch Programming and Scripting skills
Come As You Are
At Confluent, equality is a core tenet of our culture. We are committed to building an inclusive global team that represents a variety of backgrounds, perspectives, beliefs, and experiences. The more diverse we are, the richer our community and the broader our impact.
Click here to review our California Candidate Privacy Notice, which describes how and when Confluent, Inc., and its group companies, collects, uses, and shares certain personal information of California job applicants and prospective employees.