Senior Security Operations Engineer

Aiven’s exceptional growth is testament to our ambition in becoming the global category leader in managed cloud data infrastructure. Since its inception six years ago, Aiven’s mission has been to enable customers to drive business results from open source that trigger meaningful transformations for their businesses. We love to operate our favorite tools at scale and empower our customers to do great work. Aiven now has clients on every continent and in over 70 countries globally.

Headquartered in Helsinki with hubs in Berlin, Boston, Sydney, Singapore and Toronto, Aiven provides managed open-source data technologies, such as PostgreSQL, Apache Kafka and M3, on all major clouds. We have raised Series C funding totaling $160M and are backed by world-class investors including Atomico, IVP and Earlybird Venture Capital, among others. With a recent valuation of $2B, we have become one of the tech world’s most recent unicorns!

We take pride in how we’ve grown, and the positive and passionate working environment we’ve created makes us really excited about what we can achieve in the future. We live our values of openness and ownership every day, and ensure you’ll feel empowered to contribute creatively and meaningfully.

At Aiven we value and celebrate the diversity of our people. We recognize the many benefits of a diverse workforce and strive for an inclusive workplace that empowers all our colleagues to thrive. Our search for the best talent fully encompasses and embraces these values and principles.

The Job

We are looking for an experienced Senior Security Operations Engineer to work on our cloud operations platform with a specific focus on Information Security.

This person will design, implement and further develop security controls to protect Aiven’s production infrastructure. The controls include access and audit controls, data security and privacy, intrusion detection and prevention systems, vulnerability scanning, detection and remediation, among others. In addition, we would expect this role to share their expertise in guiding other developers and improving security awareness overall.

In this role you will contribute to the maturity of the SOC by participating in various SOC building projects, such as log source on-boarding, health checks, use case creation, process, and procedure creation, and improvement, as well as refinement of SIEM alerts to reduce false positives. You are expected to assist in security incident response, investigations and digital forensic-related tasks. You will be responsible for documenting and sharing knowledge acquired during your daily tasks.

Information Security is critical for success in our business and has a strong mandate from the company leadership. We hold ISO27001:2013 certification and are SOC2 compliant.

The job location can be anywhere in Australia or New Zealand

Requirements

Key requirements for success in this role include:

• Interest and demonstrated experience in defining and developing Information Security software controls
• 5-8+ years of Information Security experience
• Excellent Linux systems administration and networking skills.
• Solid development or scripting skills in Python
• Understanding of the incident response process and enterprise information security fundamentals
• Knowledge of security operations analysis, detection and response tools including, but not limited to, SIEM, IDS/IPS, EDR
• Experience in threat modelling as part of software development efforts
• Fluency in English, verbal and written

What we value:

• CISSP or preparing for it
• Ethical Hacking experience
• Blue team experience
• Distributed systems knowledge
• Involvement in the InfoSec community
• Passion for open source

Benefits

• A dynamic start-up environment with a rapidly growing, international business
• Stock options
• 1.5% extra employer superannuation contribution on top of the guarantee rate
• Subsidized private health insurance covers for employees' families
• Highly experienced colleagues
• Cool office in the centre of the city
• We support our people's growth by covering costs of professional trainings, conferences and exams
• Generous parental leave plans
• On top of 20 days' annual leave, we grant employees 5 days' paid leave for educational and voluteer purposes per year

You will be part of a highly-skilled, tight-knit team, making your contribution essential to what is becoming a great success story. If you're interested, send us your application along with a link to your GitHub profile.

Diversity Statement

Aiven provides equal employment opportunities to all employees and applicants for employment without regard to age, gender identity, national or ethnic origin, religion, sexual orientation, physical and mental ability, marital and family status or without regard to any other similar personal attributes.

Aiven complies with applicable local laws governing non-discrimination in employment in every location in which the company operates. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, transfer, leaves of absence, compensation, traini