Cyber Defense Engineer

About The RoleThe Information Security team mission is to build and protect stakeholder trust - customers, employees, investors - in our business, especially where technology is involved. Security at TRR has a unique value in reinforcing trust in the stewardship that is core to the business. We do this by guiding the right organizational security risk decisions and partnering with technology and business teams. We bring integrity, knowledge, and a passion for technology.
The Cyber Defense Engineer role is a technical hands-on role in a dynamic and fast-paced environment. You’ll be working with various application and system owners to report, review, triage vulnerabilities, as well as to drive remediations and to improve our current processes by driving the configurations and integration efforts.

What You Get To Do Everyday

• Monitor the SIEM for suspicious events and anomalous activity. Provide timely detection, identification, and alerting of possible attacks/intrusions, anomalous activities, and misuse activities and distinguish these incidents and events from benign activities

• Design, build, maintain, and enhance security services in GCP and AWS.

• Ability to configure data pipelines in the cloud and transport data into data lakes for analysis

• Configure and integrate SaaS tools, EDR, firewalls to centralize the vulnerability management program

• Document and manage cyber events in ticketing systems

• Assist in incident response procedures.

• Review, triage vulnerabilities, and drive remediation efforts across IT, engineering and product teams

• Management vulnerability remediation lifecycle

• Track, report and improve the vulnerability remediation process 

• Configure logging, capture and analyze cyber events from  technologies such as Intrusion Prevention Systems (IPS), firewalls, endpoint protection, web/email filtering, cloud hosting environments etc. 

• Perform event correlation using information gathered from a variety of sources within the enterprise to gain situational awareness and determine the effectiveness of an observed attack 

• Discover, remediate and validate security issues across cloud infrastructure per industry standard information security policies 

• Build working relationships with internal stakeholders and vendors

• Mentor 1-2 Cyber Security Engineers impacting overall success of the team

• Ability to code against APIs (data extraction), write scripts and automate workflows is a plus

​

What You Bring To The Role

Minimum Requirements:

• Minimum 3 years in relevant experience with a Bachelor’s degree in Computer Science/Information Technology/Data Science including leading Cyber Security Engineers

• Experience with SIEM, configuring and maintaining threat use cases

• Very good understanding of EDR, vulnerability scanning tools, writing queries (SQL)

• Comfortable working in the Mac/Unix/Linux environment

• Familiarity with EDR tools

• Familiarity with common security vulnerabilities (CVE/CVSS) and the ability to judge their severity and impact on the business

• Participation in on-call rotation periodically which may involve non-traditional working hours

• Familiarity with AWS and GCP required, cloud certifications are a plus

• Malware Analysis

• Setting up HoneyPots and sniffers

• Eagerness to be hands-on with cybersecurity tools and assist with configuration tasks

• Cybersecurity certifications ISC2, GIAC, SANS

Preferred Requirements:

• Proficiency with Python programming language is a plus

Compensation, Benefits, + Perks

• Employee Stock Purchase Plan

• 401K with Company Match

• Medical, Dental & Vision Insurance

• Paid Parental Leave

• 9 Paid Company Holidays

• Flexible Time Off (With Manager Approval)

• Find out more about our Benefits here.

The expected salary range for this role is $116,054.00-$145,068.00. To determine starting pay we carefully consider a variety of factors, including primary work location and an evaluation of a candidate’s skills, experience, market demands, and internal parity. Additionally, salary is just one component of TRR’s total rewards package. Depending on role, employees may also be eligible for a bonus program, incentive pay and benefits.

The RealReal is the world’s largest online marketplace for authenticated, resale luxury goods, with 37 million members. With a rigorous authentication process overseen by experts, The RealReal provides a safe and reliable platform for consumers to buy and sell their luxury items. We have hundreds of in-house gemologists, horologists, and brand authenticators who inspect thousands of items each day. As a sustainable company, we give new life to pieces by thousands of brands across numerous categories—including women's and men's fashion, fine jewelry and watches, art, and home—in support of the circular economy. We make selling effortless with free virtual appointments, in-home pickup, drop-off, and direct shipping. We handle all of the work for consignors, including authenticating, using AI and machine learning to determine optimal pricing, photographing and listing their items, as well as shipping and customer service.