At JFrog, we’re reinventing DevOps to help the world’s greatest companies innovate -- and we want you along for the ride. This is a special place with a unique combination of brilliance, spirit and just all-around great people. Here, if you’re willing to do more, your career can take off. And since software plays a central role in everyone’s lives, you’ll be part of an important mission. Thousands of customers, including the majority of the Fortune 100, trust JFrog to manage, accelerate, and secure their software delivery from code to production -- a concept we call “liquid software.” Wouldn't it be amazing if you could join us in our journey?
As an IR & SecOps Engineer Team Lead, you will lead the response process regarding cybersecurity threats facing the company. You will help further develop the Incident Response program that protects JFrog today and into the future. We are looking for an experienced, highly motivated leader who embraces the opportunity to influence and increase awareness of security across the organization.
As a IR & SecOps Team Lead at JFrog you will...- Plan, design, build, and execute JFrog’s security engineering operations
- Mentor and provide technical leadership to other members of the security team
- Identify emerging cybersecurity threats, misconfigurations, and vulnerabilities by conducting continuous monitoring and log analysis related to JFrog Cloud
- Perform incident triage by determining scope, urgency, and potential impact, and identify specific vulnerabilities while recommending actions for expeditious remediation
- Partner with the engineering teams in the company to drive the security mission across the organization
- Provide on-call security support as needed
- 5+ years of relevant industry experience in IR, solid knowledge of information security principles and practices
- Hands-on experience with cloud (AWS/GCP/Azure), preferably with containerized environments.
- Hands-on experience with SIEM and SOAR
- Experience with Endpoint Protection (EDR)
- Experience with least privilege principle platforms
- Experience with Vulnerability Management platforms
- Experience with at least one scripting language (Python/Powershell/Bash)
- Familiarity with cloud security platforms such as CSPM/DSPM/SSPM/CNAP
- Familiarity with DevSecOps principles such as CI/CD or IaC - an advantage
- Familiarity with workload/runtime protection - an advantage
Top Skills
What We Do
JFrog Ltd. (Nasdaq: FROG), is on a mission to create a world of software delivered without friction from developer to device. Driven by a “Liquid Software” vision, the JFrog Software Supply Chain Platform is a single system of record that powers organizations to build, manage, and distribute software quickly and securely, ensuring it is available, traceable, and tamper-proof. The integrated security features also help identify, protect, and remediate against threats and vulnerabilities. JFrog’s hybrid, universal, multi-cloud platform is available as both self-hosted and SaaS services across major cloud service providers. Millions of users and 7K+ customers worldwide, including a majority of the FORTUNE 100, depend on JFrog solutions to securely embrace digital transformation. Once you leap forward, you won’t go back!
