Top Benefits
Medical, wellness and financial benefits
Free snacks and access to the company fitness center
Unlimited paid time off policy
About the role
Who you are
- Strong understanding of SIEM, EDR, cloud security services (e.g., AWS GuardDuty), and various security technologies
- Experience in automation and development of automated playbooks and associated processes in security orchestration, automation and response (SOAR) environments
- Experience in the creation of incident response plans and leading incident response efforts and post incident reporting when required
- Threat intelligence, knowledge of tactics, techniques, and procedures (TTPs) utilised by threat actors and how to generate and deploy mitigation strategies
- Vulnerability management, monitoring, reporting and engagement with necessary stakeholders to ensure timely remediation
- Can demonstrate strong understanding of network security principles and encryption technologies
- Experience of security change management processes and procedures
- Demonstrate experience of risk assessment and advisory capabilities on both internal systems and products/solutions from third party vendors (SaaS, AI etc)
- Experience in contributing to the development, implementation and management of security policies and procedures
- Strong knowledge of security frameworks and industry best practices – such as ISO 270001, NIST, PCI-DSS and others
- Strong analytical and problem solving capabilities
- Demonstrate experience of effective communication and collaborative skills to work across diverse cross-functional teams including development, IT, Legal, Governance and Risk etc
What the job involves
- The Roku trust engineering team is a close knit group of professionals with a passion for information security
- Our mission is to protect our customers, partners, devices, services, infrastructure, and data. We work collaboratively, sharing insights and expertise to stay ahead of the curve
- Join us, and you’ll be part of a dynamic team that thrives on challenges and celebrates victories together
- As a Security Engineer in the Trust engineering team, you will be involved in supporting the design, implementation and management of Roku’s end to end security systems and controls impacting a global user base
- Key responsibilities will include supporting the development of security controls, the management and maintenance of SIEM/SOAR tooling and threat intelligence platforms, technical incident response, vulnerability management, risk assessment and supporting and acting as a first point of contact for the future outsourced Tier 1 SOC function
- You will collaborate with teams both within Trust engineering and the wider organisation in order to support, develop and influence strong security practices and postures across the organisation
- Trust Information Security Operations
- Supporting the design and implementation of information security systems and frameworks including threat prevention, detection and mitigation tools
- Manage, maintain and optimize security information and event management (SIEM) platforms and associated security infrastructure
- Detect and respond to information security incidents, investigate security incidents, identify attack vectors, and lead containment/eradication/recovery efforts. Create detailed incident reports, lead post-incident reviews, document lessons learned, and contribute to compliance reporting
- Threat Hunting & Proactive Measures: Hunt for undetected threats, tune security tools, refine detection rules, and address false positives
- Vulnerability management, analysis, oversee the vulnerability management lifecycle and reporting, support prioritization and advise relevant stakeholders on vulnerability status and postures
- Security controls, identify risks in new and existing projects and environments and support the implementation of necessary security controls to meet business needs
- Support the implementation of security orchestration, automation and response (SOAR) playbooks and procedures in order to improve response times and ensure consistent approach to incidents
- Provide mentorship and support to more junior analysts, act as escalation point for complex issues
- Support in testing and evaluation of security products and solutions
- Support the development and management of the security operations centre (SOC) function as it is built up and developed into the future
- Raise awareness of security policies and best practices across the organisation. And continue to contribute to ongoing development of best practices, procedures and security training across the organisation
Benefits
- Medical, wellness and financial benefits
- Free snacks and access to the company fitness center
- Unlimited paid time off policy
- Work from home opportunities
About Roku
Software Development
1001-5000
With the #1 platform for streaming television in the U.S., Roku wants to revolutionize the way the world watches TV.
Our Roku-branded TVs, Roku TV models, Smart Home system, streaming players, audio equipment, and the purpose-built operating system that powers it all can turn any home into a home theater, with seamless integration of hardware and software. Our commitment to our users extends to our brand studio, which creates innovative Roku Originals exclusively for The Roku Channel, a free channel that reaches approximately 80 million households in the U.S. and Mexico.
Join us and you'll have the chance to delight millions of TV streamers around the world while gaining meaningful experience across a variety of disciplines. Be a part of shaping the future of streaming at weareroku.com.
Top Benefits
Medical, wellness and financial benefits
Free snacks and access to the company fitness center
Unlimited paid time off policy
About the role
Who you are
- Strong understanding of SIEM, EDR, cloud security services (e.g., AWS GuardDuty), and various security technologies
- Experience in automation and development of automated playbooks and associated processes in security orchestration, automation and response (SOAR) environments
- Experience in the creation of incident response plans and leading incident response efforts and post incident reporting when required
- Threat intelligence, knowledge of tactics, techniques, and procedures (TTPs) utilised by threat actors and how to generate and deploy mitigation strategies
- Vulnerability management, monitoring, reporting and engagement with necessary stakeholders to ensure timely remediation
- Can demonstrate strong understanding of network security principles and encryption technologies
- Experience of security change management processes and procedures
- Demonstrate experience of risk assessment and advisory capabilities on both internal systems and products/solutions from third party vendors (SaaS, AI etc)
- Experience in contributing to the development, implementation and management of security policies and procedures
- Strong knowledge of security frameworks and industry best practices – such as ISO 270001, NIST, PCI-DSS and others
- Strong analytical and problem solving capabilities
- Demonstrate experience of effective communication and collaborative skills to work across diverse cross-functional teams including development, IT, Legal, Governance and Risk etc
What the job involves
- The Roku trust engineering team is a close knit group of professionals with a passion for information security
- Our mission is to protect our customers, partners, devices, services, infrastructure, and data. We work collaboratively, sharing insights and expertise to stay ahead of the curve
- Join us, and you’ll be part of a dynamic team that thrives on challenges and celebrates victories together
- As a Security Engineer in the Trust engineering team, you will be involved in supporting the design, implementation and management of Roku’s end to end security systems and controls impacting a global user base
- Key responsibilities will include supporting the development of security controls, the management and maintenance of SIEM/SOAR tooling and threat intelligence platforms, technical incident response, vulnerability management, risk assessment and supporting and acting as a first point of contact for the future outsourced Tier 1 SOC function
- You will collaborate with teams both within Trust engineering and the wider organisation in order to support, develop and influence strong security practices and postures across the organisation
- Trust Information Security Operations
- Supporting the design and implementation of information security systems and frameworks including threat prevention, detection and mitigation tools
- Manage, maintain and optimize security information and event management (SIEM) platforms and associated security infrastructure
- Detect and respond to information security incidents, investigate security incidents, identify attack vectors, and lead containment/eradication/recovery efforts. Create detailed incident reports, lead post-incident reviews, document lessons learned, and contribute to compliance reporting
- Threat Hunting & Proactive Measures: Hunt for undetected threats, tune security tools, refine detection rules, and address false positives
- Vulnerability management, analysis, oversee the vulnerability management lifecycle and reporting, support prioritization and advise relevant stakeholders on vulnerability status and postures
- Security controls, identify risks in new and existing projects and environments and support the implementation of necessary security controls to meet business needs
- Support the implementation of security orchestration, automation and response (SOAR) playbooks and procedures in order to improve response times and ensure consistent approach to incidents
- Provide mentorship and support to more junior analysts, act as escalation point for complex issues
- Support in testing and evaluation of security products and solutions
- Support the development and management of the security operations centre (SOC) function as it is built up and developed into the future
- Raise awareness of security policies and best practices across the organisation. And continue to contribute to ongoing development of best practices, procedures and security training across the organisation
Benefits
- Medical, wellness and financial benefits
- Free snacks and access to the company fitness center
- Unlimited paid time off policy
- Work from home opportunities
About Roku
Software Development
1001-5000
With the #1 platform for streaming television in the U.S., Roku wants to revolutionize the way the world watches TV.
Our Roku-branded TVs, Roku TV models, Smart Home system, streaming players, audio equipment, and the purpose-built operating system that powers it all can turn any home into a home theater, with seamless integration of hardware and software. Our commitment to our users extends to our brand studio, which creates innovative Roku Originals exclusively for The Roku Channel, a free channel that reaches approximately 80 million households in the U.S. and Mexico.
Join us and you'll have the chance to delight millions of TV streamers around the world while gaining meaningful experience across a variety of disciplines. Be a part of shaping the future of streaming at weareroku.com.