SecOps Infrastructure Engineer (Remote US): RingCentral is the global leader in cloud-based communications and collaboration software. We are fundamentally changing the nature of human interaction-giving people the freedom to connect powerfully and personally from anywhere, at any time, on any device. As part of the RingCentral CISO team, you’ll help define and drive security discipline and standards required for complex, business-critical problems supported with elegant, user-friendly solutions that perform at massive scale. It’s a once-in-a-career chance to get your hands on the latest-and-greatest technologies, and build the platform that’s reshaping the way the world communicates. About this role: As a SecOps Infrastructure Engineer at RingCentral, your primary responsibilities are to maintain and configure our security devices and products, including firewalls, web app firewalls, intrusion detection systems, endpoint security, etc. Additionally, you will respond to requests from other security teams including vulnerability management, SOC/SIEM security event management, incident response, and application security. You will also work closely with our product and networking teams to ensure that the traffic for our products is secure and available to our customers. This can be a 100% remote role, or a hybrid role based at our Denver CO, Dallas TX, or Belmont CA offices. Responsibilities: Administer and maintain security products (web application firewall, IDS, (h)IPS, etc). Design Security Operations Infrastructure and interface with other operational teams around the organization. Act as a core member of the Incident Response Team, triaging, responding to and reporting incidents and associated metrics. Maintain and enhance monitoring capabilities to ensure the integrity of our systems and networks. Configure tools to meet compliance requirements and provide evidence to support audits (FedRAMP, PCI-DSS, GDPR, SOC2, HITRUST, etc.). Participate in on-call rotation. Additional Roles and Responsibilities: Maintain a comprehensive understanding of our information systems. Work closely with the multiple operation teams to implement and enforce our policy. Conduct risk-based evaluation of policy exception requests. Coordinate and participate in external assessments of our information security (risk assessment, penetration test, incident response tabletop). Monitor for triage and mitigate risks of vulnerabilities in our systems and networks. Required Skills: Knowledge of endpoint and server operating systems (e.g. Linux, Windows, macOS) and relevant security risks, controls, and vulnerabilities. Strong knowledge of networking and network security fundamentals. Practical knowledge of enterprise security tools (anti-malware, firewalls, IDS/IPS, email monitoring, two-factor authentication, SIEM, etc.). Familiarity with AWS environments and AWS security tools. Familiarity with vulnerability management concepts, such as CVE and CVSS. Knowledge of and experience with compliance/remediation efforts of relevant domestic and international security standards and best practices such as FedRAMP, PCI-DSS, GDPR, SOC2, HITRUST,etc. Scripting experience, python preferred. Familiarity with cloud computing environments and applications in a security context strongly preferred. Ability to quickly change priorities and handle simultaneous tasks. Excellent oral and written communications. Education/Prerequisites: 4 or more years of experience in the information security field. BS degree in Computer Science, Cyber Security, Information Technology (or related discipline). Graduate degree in Information Assurance (or related discipline) or equivalent formal training and experience in Information Security preferred. CISSP or GIAC certifications preferred. What we offer: RingCentral offers all the work/life benefits you could ever want, (and none of the micromanagement.) Comprehensive medical, dental, vision, disability, life insurance Health Savings Account (HSA), Flexible Spending Account (FSAs) and Commuter Benefits 401K match and ESPP Flexible PTO Wellness programs including1:1 wellness coaching through TaskHuman and meditation guidance through Headspace Paid parental leave and new parent gift boxes Pet insurance Employee Assistance Program (EAP) with counseling sessions available 24/7 Rocket Lawyer services that provide legal advice, document creation and estate planning Employee bonus referral program RingCentral’s work culture is the backbone of our success. And don’t just take our word for it: we are recognized as a Best Place to Work by Glassdoor, the Top Work Culture by Comparably and hold local BPTW awards in every major location. Bottom line: We are committed to hiring and retaining great people because we know you power our success. RingCentral offers on-site and hybrid work options optimized for the ways we work and live now. About RingCentral RingCentral, Inc. (NYSE: RNG) is a leading provider of business cloud communications and contact center solutions based on its powerful Message Video Phone (MVP) global platform. More flexible and cost effective than legacy on-premises PBX and video conferencing systems that it replaces, RingCentral empowers modern mobile and distributed workforces to communicate, collaborate, and connect via any mode, any device, and any location. RingCentral is headquartered in Belmont, California, and has offices around the world. If you are hired in Colorado, the compensation range for this position is between $146,000 and $183,000. RingCentral is an equal-opportunity employer that truly values diversity. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. We are committed to providing reasonable accommodations for individuals with disabilities during our application and interview process. If you require such accommodations, please click on the following link to learn more about how we can assist you.
#LI-IG1 #J-18808-Ljbffr
application-security Intrusion Detection System (IDS) Vulnerability management antimalware macOS two-factor-authentication SIEM Python network-security Incident response Amazon Web Services (AWS) Linux Common Vulnerability Scoring System (CVSS) Networking PCI DSS cve cloud-computing scripting Windows FedRAMP SOC2 Firewalls GDPR