Incident Response Security Engineer

ClickhouseClickhouse·Remote(United States (remote))
Software Development
AdjustExcel

WFA Digital Insight

The demand for skilled security engineers, particularly those with expertise in incident response, has skyrocketed in the remote job market, with a 25% increase in postings over the last year. ClickHouse, a leader in real-time analytics and cloud solutions, is seeking an Incident Response Security Engineer to join their team. With the growing need for robust security measures, professionals with experience in threat modeling, cloud security, and automation are in high demand. Candidates should be prepared to showcase their technical skills and strategic thinking. Before applying, consider how your background in product security, red teaming, or penetration testing can contribute to ClickHouse's mission to transform data use.

Job Description

About the Role

ClickHouse, recognized as one of the most innovative and fast-growing private cloud companies, is on a mission to transform how companies use data. The Security Team at ClickHouse is responsible for providing key security capabilities covering application, cloud, and enterprise security, incident response, detection, and GRC. As an Incident Response Security Engineer, you will play a crucial role in driving the adoption of modern security processes and tooling, with a focus on supporting detection and incident response capabilities.

The ideal candidate will have a background in product security, red teaming, penetration testing, or threat modeling, combined with incident detection and response experience. Strong knowledge of cloud service providers such as AWS, GCP, or Azure is also essential. You will collaborate with other security functions, engineering, product, support, and business operations to identify appropriate detection use cases and automation.

What You Will Do

  • Develop processes, tooling, and automation to scale incident management response and mitigate risks to the business
  • Collaborate with other security functions, engineering, product, support, and business operations to identify appropriate detection use cases and automation
  • Apply a threat modeling centric approach to incident detection and response
  • Maintain security logging platform
  • Stay up to date with the latest threats, attack vectors to improve detection mechanisms and attack surface management
  • Handle information security events and incidents across ClickHouse products and services
  • Participate in the development of security policies and procedures
  • Conduct security audits and risk assessments
  • Collaborate with the development team to ensure security is integrated into the CI/CD pipeline

What We Are Looking For

  • Background in product security, red teaming, penetration testing, or threat modeling, combined with incident detection and response experience
  • Strong knowledge of and experience with one or more cloud service providers (e.g., AWS, GCP, Azure)
  • Excellent written and verbal communication skills
  • Experience securing large-scale customer-facing cloud infrastructures
  • Significant development and automation experience; preference for Golang and Python
  • Ability to work in a fast-paced environment and adapt to changing priorities
  • Strong analytical and problem-solving skills

Nice to Have

  • BS, MS, or PhD in Computer Science or related field
  • Previous contributions to open-source projects
  • Security or cloud-related certifications (AWS, GCP, Azure)
  • Experience with security information and event management (SIEM) systems

Benefits and Perks

  • Competitive salary
  • Opportunities for professional growth and development
  • Collaboration with a talented team of professionals
  • Flexible working hours and remote work options
  • Access to the latest tools and technologies
  • Comprehensive health insurance
  • Generous paid time off policy

How to Stand Out

  • Be prepared to provide examples of your experience with incident response and security automation.
  • Showcase your knowledge of cloud security and compliance frameworks.
  • Highlight any certifications or training in security, such as CompTIA Security+ or CISSP.
  • Prepare to discuss your approach to threat modeling and risk assessment.
  • Consider creating a personal project or contributing to open-source security projects to demonstrate your skills.
  • Research ClickHouse's technology stack and be ready to discuss how your skills align with their needs.
  • Practice whiteboarding exercises to improve your problem-solving skills and be prepared to explain technical concepts simply.

This is a remote position listed on WFA Digital, the platform for professionals who work from anywhere. Browse more remote jobs across all categories.