Staff Security Engineer - Blue Team
Description For Staff Security Engineer - Blue Team
Ironclad, the leading contract lifecycle management platform, is seeking a Staff Security Engineer for their Blue Team. This role combines security operations and DevSecOps responsibilities in a hybrid work environment based in San Francisco. The position offers a competitive salary range of $170,000-$190,000 plus equity and comprehensive benefits.
As a Blue Team operator, you'll be responsible for both corporate and product security, working with cutting-edge tools like CrowdStrike Falcon, Jamf, and Wiz. Your role will involve monitoring security alerts, responding to threats, maintaining detection systems, and implementing security measures in CI/CD pipelines. You'll also contribute to compliance efforts for standards like SOC 2 and ISO 27001.
Ironclad is backed by top-tier investors including Accel, Sequoia, and Y Combinator, and has been recognized by Fortune as a Great Place to Work for six consecutive years. The company serves innovative clients like L'Oreal, OpenAI, and Cisco, helping them streamline their contract management processes.
The ideal candidate will bring experience in B2B SaaS security, threat hunting, and compliance frameworks. You'll work in a collaborative environment, interfacing with engineering and IT teams to maintain robust security practices. This role offers an excellent opportunity to impact security operations at a rapidly growing company while enjoying competitive compensation and benefits.
Office attendance is required twice weekly (Tuesdays and Thursdays) for collaboration, with additional days for team events. The position includes comprehensive health benefits, 401k, wellness reimbursement, flexible vacation policy, and generous parental leave, making it an attractive opportunity for security professionals looking to advance their careers in a dynamic, inclusive environment.
Responsibilities For Staff Security Engineer - Blue Team
- Monitor and investigate alerts in CrowdStrike Falcon, escalating incidents as needed
- Respond to endpoint detections, phishing attempts, and insider threats across endpoints managed via Jamf
- Maintain and improve detection rules, dashboards, and response workflows
- Administer and tune Wiz for cloud workload protection and misconfiguration detection in Google Cloud Platform (GCP)
- Integrate security scanning and policy checks into CI/CD pipelines
- Work with engineering to remediate vulnerabilities, harden Docker images, and reduce supply chain risk
- Assist with evidence collection and controls validation for audits
- Document procedures and help drive continuous improvement in incident response
Requirements For Staff Security Engineer - Blue Team
- Experience supporting a B2B SaaS product in a regulated environment, inclusive of GDPR, HIPAA, SOC, ISO 27001, and NIST SP 800-53
- Familiarity with MITRE ATT&CK, threat hunting techniques, and adversary simulation
- Experience with compliance tooling, vulnerability management platforms, or Google security APIs
Benefits For Staff Security Engineer - Blue Team
- Health, dental, and vision insurance
- 401k
- Wellness reimbursement
- Take what you need vacation policy
- Generous parental leave for both primary and secondary caregivers
- Equity awards
Jobs Related To Ironclad Staff Security Engineer - Blue Team
