Staff Cyber Defense Engineer

The RealReal is the world’s largest online marketplace for authenticated, resale luxury goods. Through our work, we are committed to contributing to a sustainable future, both for fashion and for our employees. Authenticity is a core component of our business; we value it in our products and we celebrate it across our teams by encouraging every TRR employee to bring their REAL authentic selves to work each day. We’re hiring, and we’d love for you to join our dynamic team!   The Information Security team mission is to build and protect stakeholder trust - customers, employees, investors - in our business, especially where technology is involved. Security at TRR has a unique value in reinforcing trust in the stewardship that is core to the business. We do this by guiding the right organizational security risk decisions and partnering with technology and business teams. We bring integrity, knowledge, and a passion for technology. The Staff Cyber Defense Engineer role is a technical hands-on role in a dynamic and fast-paced environment. You’ll be leading a team and  working with various application and system owners to report, review, triage vulnerabilities, as well as to drive remediations and to improve our current processes by driving the configurations and integration efforts. What You Get To Do Every Day Monitor the SIEM for suspicious events and anomalous activity. Provide timely detection, identification, and alerting of possible attacks/intrusions, anomalous activities, and misuse activities and distinguish these incidents and events from benign activities Design, build, maintain, and enhance security services in GCP and AWS. Ability to configure data pipelines in the cloud and transport data into data lakes for analysis Configure and integrate SaaS tools, EDR, firewalls to centralize the vulnerability management program Document and manage cyber events in ticketing systems Assist in incident response procedures. Review, triage vulnerabilities, and drive remediation efforts across IT, engineering and product teams Management vulnerability remediation lifecycle Track, report and improve the vulnerability remediation process  Configure logging, capture and analyze cyber events from  technologies such as Intrusion Prevention Systems (IPS), firewalls, endpoint protection, web/email filtering, cloud hosting environments etc.  Perform event correlation using information gathered from a variety of sources within the enterprise to gain situational awareness and determine the effectiveness of an observed attack  Discover, remediate and validate security issues across cloud infrastructure per industry standard information security policies  Build working relationships with internal stakeholders and vendors Mentor 1-2 Cyber Security Engineers impacting overall success of the team Ability to code against APIs (data extraction), write scripts and automate workflows is a plus What You Bring To The Role Minimum 5 years in relevant experience with a Bachelor’s degree in Computer Science/Information Technology/Data Science including leading Cyber Security Engineers Experience with SIEM, configuring and maintaining threat use cases Very good understanding of EDR, vulnerability scanning tools, writing queries (SQL) Comfortable working in the Mac/Unix/Linux environment Familiarity with EDR tools Familiarity with common security vulnerabilities (CVE/CVSS) and the ability to judge their severity and impact on the business Participation in on-call rotation periodically which may involve non-traditional working hours Familiarity with AWS and GCP required, cloud certifications are a plus Malware Analysis Setting up HoneyPots and sniffers Eagerness to be hands-on with cybersecurity tools and assist with configuration tasks Cybersecurity certifications ISC2, GIAC, SANS Proficiency with Python programming language is a plus Compensation|Benefits|Perks Employee Stock Purchase Plan (purchase stock at discounted rates) 401K (with company matching up to $1000) Medical, Dental & Vision Insurance Paid parental leave Unlimited Discretionary Time Off (DTO) & 9 Paid Holidays The expected salary range for this role is $170,094 - $218,835 . To determine starting pay we carefully consider a variety of factors, including primary work location and an evaluation of a candidate’s skills, experience, market demands, and internal parity. Additionally, salary is just one component of TRR’s total rewards package. Depending on role, employees may also be eligible for a bonus program, incentive pay and benefits. GHR8526 #LI-AA10 #LI-Remote     The RealReal is the world’s largest online marketplace for authenticated, resale luxury goods, with more than 30 million members. With a rigorous authentication process overseen by experts, The RealReal provides a safe and reliable platform for consumers to buy and sell their luxury items. We have hundreds of in-house gemologists, horologists and brand authenticators who inspect thousands of items each day. As a sustainable company, we give new life to pieces by thousands of brands across numerous categories—including women's and men's fashion, fine jewelry and watches, art and home—in support of the circular economy. We make selling effortless with free virtual appointments, in-home pickup, drop-off and direct shipping. We do all of the work for consignors, including authenticating, using AI and machine learning to determine optimal pricing, photographing and listing their items, as well as handling shipping and customer service. At our 13 retail locations, including our twelve shoppable stores, customers can sell, meet with our experts and receive free valuations. The RealReal is committed to providing an equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or expression, or Veteran status. We will consider qualified applicants for a position regardless of arrest or conviction records.  At TRR, People Come First. That’s why diversity and inclusion are vital to our priorities as an equal opportunity employer. You can read about our Diversity Equity and Inclusion program here . Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. The employee is regularly required to sit; use hands to finger, handle, or feel and talk or hear. The employee is occasionally required to stand; walk; reach with hands and arms; climb or balance; stoop, kneel, crouch, or crawl; and taste or smell. The employee must occasionally lift and/or move up to 10 pounds. Specific vision abilities required by this job include close vision. The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job.