ButterflyMX is your leading property technology company that aims to simplify property access for owners, staff, residents, and visitors. Our innovative access control solutions are relied upon by more than 10,000 multifamily, commercial, student housing, and gated communities worldwide, including the most trusted names in the real estate industry.
ButterflyMX is growing exponentially, and we want you to grow with us! We’re looking for top-tier talent who want to supercharge their careers in a high-growth, innovative, and industry-changing company.
At ButterflyMX, we value exceptional people who are intelligent, passionate, collaborative, and balanced. As a distributed workforce, we offer a transparent and flexible culture, along with benefits like a 401(k) match and quarterly stipends for self-care. We work hard to continually improve the experience of everyone in our communities while also finding time to enjoy our personal passions.
We are looking for a seasoned Security Engineer with expertise in Elastic Defend and Elastic SIEM deployments and management. The ideal candidate will have a strong background in incident management response, threat and vulnerability management, application security, and AWS security.
***This is a temporary/contract position for 4 months***
Responsibilities:
- Elastic Defend and Elastic SIEM Management: Deploy, configure, and manage Elastic Defend and Elastic SIEM solutions to monitor and protect our infrastructure.
- Incident Management Response: Lead and coordinate incident response efforts, including detection, analysis, containment, eradication, and recovery. Develop playbooks and runbooks.
- Threat and Vulnerability Management: Manage vulnerability remediation efforts, ensuring adherence to SLAs
- AWS Security: Implement and manage security best practices in our AWS environment, including IAM, WAF, security groups, VPC configurations, Security Stack configuration, and monitoring.
- Application Security: Perform security assessments of applications, identify security flaws, and recommend corrective actions. Train Developers and other engineering team members on application security.
- Collaboration: Work closely with cross-functional teams to ensure security
- measures are integrated into all aspects of the development and deployment processes.
- Documentation: Maintain detailed documentation of security incidents, configurations, and procedures.
Requirements
- Minimum of 5 years of experience in a security engineering role.
- Elastic Expertise: Proven experience with Elastic Defend and Elastic SIEM deployments and management.
- Proficiency with deploying, operationalizing & managing security solutions in a remote first organization, with a cloud tech stack built for providing SaaS.
- AWS Security SME - experiential knowledge of securing EC2, S3, Lambda, EKS
- AWS Security Stack Experience - WAF, Inspector, Security Hub, GuardDuty, etc..
- Security Overlay Solutions: EDR, SIEM, CNAPP/CSPM, DSPM, DLP, IDS/IPS..
- Google Workspace, Apple, Windows, MDM, Secure Email Gateway
- Incident Response: Strong expertise in incident management and response.
- Threat Management: In-depth knowledge of threat and vulnerability management practices.
- Application Security: Experience in conducting application security assessments and implementing security controls.
- Demonstrated ability to educate an engineering audience about technical application security vulnerabilities, i.e., OWASP Top Ten, OWASP API Security Top 1
- Relevant certifications such as Terraform Certified, AWS Certified Security – Specialty, or similar are a plus.
- Excellent problem-solving skills, attention to detail, and the ability to work independently and as part of a team.
- Strong verbal and written communication skills.