Detection & Response, Lead

RampRamp·Remote(New York, NY (HQ))
Other

WFA Digital Insight

As demand for cybersecurity experts grows, Ramp's Detection & Response Lead role stands out for its focus on high-stakes, data-dense problems. With remote work on the rise, skills like query-based log management and threat detection are in high demand. Ramp's commitment to automation and consequential decision-making makes this role appealing to builders who own problems end-to-end.

Job Description

About the Role

Ramp is seeking a Detection & Response Lead to drive security detection and response initiatives across the company. This role will focus on maturing security detection and alerting capabilities, particularly in federal and public sector environments.

Responsibilities

  • Respond to and assist with security requests and incidents
  • Review logging, alerting, and audit sources to identify potential security incidents
  • Contribute to the creation and upkeep of runbooks and security alerts
  • Utilize log ingestion platforms for security analytics and identification of tactics, techniques, and patterns of attackers

Requirements

  • 3-4 years of information technology experience
  • Working experience in information security, especially on a Computer/Security Incident Response Team (C/SIRT), Computer Emergency Response Team (CERT), Computer Security Incident Response Center (CSIRC), or a Security Operations Center (SOC)
  • Experience with query-based log management solutions (ELK, Datadog, Panther, etc.)

How to Stand Out

  • To stand out, highlight your experience with automation and query-based log management solutions in your application.
  • Be prepared to discuss your approach to threat detection and response, and how you've handled high-pressure security incidents in the past.
  • Showcase your ability to work independently and make consequential decisions in a fast-paced environment.
  • Familiarize yourself with Ramp's technology stack and be ready to discuss how your skills align with their needs.
  • Consider creating a portfolio that demonstrates your experience with security analytics and incident response.

This is a remote position listed on WFA Digital, the platform for professionals who work from anywhere. Browse more remote jobs across all categories.