Blackbaud, Inc.

Senior Threat Detection Engineer

Blackbaud, Inc.$101K — $132K *
US-AnywhereRemote in United States
Information Technology
5 - 7 years of experience
Today
Be an Early Applicant
Job Overview by Ladders

Qualifications

  • 5+ years of Security Engineering and Analysis experience, preferably in Threat Detection and Response
  • 5+ years of IT or networking experience
  • Intermediate to Advanced knowledge of Linux/Unix OS and Windows
  • Expertise in at least one public cloud, preferably Microsoft Azure
  • Proven ability to implement automation through scripting languages like PowerShell or Python
  • Familiarity with cyber security frameworks such as NIST and MITRE ATT&CK
  • Industry-recognized professional certification such as Security+, CEH, or equivalent.

Responsibilities

  • Build out automations to enhance team performance and reduce response times
  • Document automation processes, including pre-build requirements and validation criteria
  • Perform intrusion analysis using SIEM technology and data visualization
  • Act as the first responder to security events and incidents
  • Hunt for and identify threat actor groups and their tactics
  • Document findings, escalate critical incidents, and interact with business teams
  • Advise leadership on tool optimization and evaluation of future tools

Benefits

  • Medical, dental, and vision insurance
  • Remote-flexible workforce
  • Wellness Programs
  • 401(k) program with employer match
  • Flexible paid time off
  • Generous Parental Leave
  • Donations for Doers program
  • Pet insurance and legal identity protection
  • Tuition reimbursement program
Full Job Description
About the role:

We are looking for a savvy, high-performing Threat Detection Engineer who will be responsible for the day-to-day management of company-wide information security toolsets and the protection of Blackbaud's and Client's information. Security Engineers diligently investigate anomalous events and alerts, detect malicious activities, reverse engineer malware, and write signatures and scripts for various security tools to defend against malicious activity. The Security Engineer provides reports to management regarding the negative impact to the business caused by theft, destruction, alteration, or denial of access to information. The Security Engineer is primarily involved in the analysis, reverse engineering, troubleshooting and resolution of complex threats that impact the information security infrastructure at the data, application, service, operating system, and network levels.

What you'll be doing:
  • Build out automations in order to optimize team performance and reduce response times
  • Document automation building process, to include defining pre-build requirements and validation criteria
  • Perform intrusion analysis using SIEM technology, reports, data visualization, log analysis and pattern analysis
  • First responder to security events and escalations via email, phone, and tickets across corporate user networks, data centers, and cloud environments.
  • Assist in remediation of information security incidents
  • Hunting for and identifying threat actor groups and respective tactics, techniques and procedures
  • Document and communicate findings, escalate critical incidents, and interact with lines of business
  • Improve and challenge existing processes and procedures in a very agile and fast paced cyber security environment
  • Keep current on the threat landscape and cyber security trends
  • Ability to adapt to fluid infrastructures and to learn/support new technologies
  • Thought leader around new security alert content creation, data correlation, anomaly thresholds, and logic updates
  • Primary mentor to the core analyst team with regards to training & escalation
  • Peer reviewer as a part of the core security engineering team
  • Advising/informing leadership on how to optimize current toolset and performing evaluation of future tools


What we'll want you to have:
  • 5+ years Security Engineering and Analysis experience, preferably in Threat Detection and Response
  • 5+ years of IT or networking experience
  • Intermediate to Advanced Linux/Unix OS and Windows knowledge
  • Expertise in at least one public cloud, preferably Microsoft Azure
  • Firewall rule and policy fundamentals
  • Network routing fundamentals
  • Ability to manage parallel tasks and accurately document resolutions
  • Working knowledge of network packet analysis tools
  • Proven ability to implement automation through scripting (e.g., Powershell, PERL, Python, bash scripting)
  • Experience with leveraging APIs to integrate third party tooling into an existing tool stack
  • Familiarity with cyber security frameworks such as NIST and MITRE ATT&CK
  • Industry recognized professional certification such as Security+, CBROPS, CSA, CEH, GSEC, SSCP


What we'll prefer you have:
  • CISSP, GBFA, GCDA, GCIA, GCIH, GMON, GNFA, GOSI, GPEN, GPPA, GREM, GSOC, OSDA, OSCP
  • Direct experience with malware and analysis techniques and methodologies.
  • Experience with playbook development using Security Orchestration and Automated Response (SOAR) platforms


The starting base pay is $101,900.00 to $132,800.00. Blackbaud may pay more or less based on employee qualifications, market value, Company finances, and other operational considerations.

Benefits Include:
  • Medical, dental, and vision insurance
  • Remote-flexible workforce
  • Wellness Programs
  • 401(k) program with employer match
  • Flexible paid time off
  • Generous Parental Leave
  • Donations for Doers
  • Pet insurance, legal and identity protection
  • Tuition reimbursement program

About Blackbaud, Inc.

Blackbaud is a cloud computing provider that serves the social good community—nonprofits, foundations, corporations, education institutions, healthcare organizations, religious organizations, and individual change agents. Its products focus on fundraising, website management, CRM, analytics, financial management, ticketing, and education administration. Blackbaud's flagship product is a fundraising SQL database software, Raiser's Edge. Revenue from the sale of Raiser's Edge and related services accounted for thirty percent of Blackbaud's total revenue in 2012. Other products and services include Blackbaud Enterprise CRM, Altru, Financial Edge, Education Edge, Blackbaud NetCommunity, eTapestry, Luminate Online, Luminate CRM, Friends Asking Friends. In addition, Blackbaud offers consultancy services to nonprofit organizations. Blackbaud was founded in 1981 by Anthony Bakker. The company is headquartered in Charleston, South Carolina. It has regional offices in Austin, Texas; Plano, Texas; St. Paul, Minnesota; and Bedford, New Hampshire. Internationally, Blackbaud has offices in London, England; Sydney, Australia and Glasgow, Scotland. Michael Gianoni is Blackbaud's CEO.
Learn more about Blackbaud, Inc.
Size
3,600 employees
Market Cap
$3 billion
Industry
Information Technology
Net Income
$7.7 million
Founded
1981
5 Year Trend
+4.9%
Revenue
$913.2 million
NASDAQ
BLKB
* Ladders Estimates

Similar Jobs

Ad banner background

Get Ready For Your
Next Interview

More Jobs at Blackbaud, Inc.

More Information Technology Jobs

Find similar Senior Threat Detection Engineer jobs:

NationwideRemote