The role
The Security Alliance is at the very core and in every corner of the organization, setting the strategy, direction to improve HelloFresh's security posture. This includes detection and response, vulnerability and risk management, cloud and IT security, compliance engineering, and more.
We’re looking for a new Lead Security Engineer to join us on the journey of keeping HelloFresh a trusted name - someone with a passion for security and appetite for new challenges.
This role aims to improve the HelloFresh Threat Detection & Response Program by maturing the tools, processes and playbooks to reduce dwell time and improve MTTD/R.
What you’ll do
-
Technically lead the SecOps function at HelloFresh Group that is responsible for maturing security logging and monitoring of Cloud, IT and Infrastructure workloads across all business units
-
Strategising and roadmapping to improve how the team responds, analyses, and detects security intrusions by
-
Realize the impact of the SOC team and collaboration across HelloTech by regular insights and reporting
-
Filter, ingest and optimize security-specific events from large log streams such as App logs, Kubernetes logs, CloudTrail, CloudFlare and ELB logs etc.
-
Conduct threat hunts against file-less malware and APTs by leveraging OS and network telemetry acquired through specialized open-source toolset like Sysmon, Osquery, RITA and Zeek
-
Develop advanced correlation and cross-correlation rules beyond what is available out of the box to detect sophisticated attacks and fraud cases
-
Generate security metrics and reporting on incidents and effectiveness of the SOC operation
This role will have an on-call rotation.
What you’ll bring
- Proven security monitoring and incident response experience in public cloud environments
- Performance-oriented people leading experience in a SOC/SecOps environment at scale, managing stakeholder expectations
- Hands-on familiarity with cloud SIEM & SOAR platforms, DDoS mitigation and preventing tools and Layer-7 Web-based perimeter security controls
- Solid understanding of network intrusion methods, network containment, segregation techniques and technologies such as Sandboxes and Intrusion Detection/Prevention Systems (ID/PS)
- Programming (automation) skills with Python / Go will be a plus
What we offer
- Comprehensive relocation assistance to move to Berlin plus visa application support
- Healthy discount on weekly HelloFresh boxes
- Annual learning and development budget to attend conferences or purchase educational resources plus access to the HelloFresh Academy
- Subsidised childcare with a professional nannying agency
- Free access to Headspace, biweekly in-house yoga classes (remote since March 2020)
- A diverse and vibrant international environment of 70+ different nationalities
- Additional perks include: Free crash course in German, compensation for advanced external German classes, discounts for our neighboring gym & Urban Sports Club, summer & winter parties, discount on our HelloFresh GO vending machines
- The chance to have a significant impact on one of the fastest-growing technology companies in Europe in an exciting growth phase
What we offer
- Comprehensive relocation assistance to move to Berlin plus visa application support
- Healthy discount on weekly HelloFresh boxes
- Subsidised childcare with a professional nannying agency
- Free access to Headspace, biweekly in-house yoga classes (remote since March 2020)
- A diverse and vibrant international environment of 70+ different nationalities
- Additional perks include: Free crash course in German, compensation for advanced external German classes, discounts for our neighbouring gym & Urban Sports Club, company events and parties, discount on our Convini vending machines
- The chance to have a significant impact on one of the fastest-growing technology companies in Europe in an exciting growth phase
Are you up for the challenge?
Please submit your complete application below including your salary expectations and earliest starting date.
After submitting an application our team will review this and get back to you within 5 business days.
For insight into our interview process take a look at our recent post here.
#Security