Pantheon Systems, Inc logo
Pantheon Systems, Inc

Pantheon WebOps Platform powers the open web, running more than 300,000 sites in the cloud for customers including Google, Princeton, Salesloft, and Doctors Without Borders. Every day, thousands of developers and marketers create, iterate, and scale WordPress and Drupal sites to reach billions of people globally. Pantheon’s multitenant, container-based platform enables organizations to manage all of their websites from a single dashboard. Organizations, including Clorox and the United Nations, drive results through accelerated development and real-time publishing using Pantheon’s collaborative workflows.

Staff Security Engineer - Security Operations

Security EngineerSecurity EngineerFull TimeRemoteLeadTeam 501-1,000

Location

Ireland

Posted

3 days ago

Salary

0

Seniority

Lead

Job Description

Staff Security Engineer - Security Operations

Pantheon Systems, Inc

Role Description As a Staff Security Engineer, SecOps, you’ll be the strategic and technical anchor of Pantheon’s security operations function — setting the long-term direction for detection, response, and operational resilience while staying hands-on with the hardest engineering problems. This role operates at the intersection of architecture, program leadership, and deep technical execution. - Define how Pantheon detects and responds to threats at scale. - Own the maturity roadmap for the SecOps capability. - Drive alignment across Engineering, Infrastructure, GRC, and executive leadership. - Shape how the broader engineering organization thinks about security. - Influence tooling and platform decisions across teams. - Serve as a principal voice for SecOps in architectural and product discussions. - Lead on EU regulatory requirements — NIS2, GDPR, and related frameworks. What You'll Do - SecOps Strategy & Roadmap: Define, own, and execute a multi-year roadmap for Pantheon’s security operations capability. - Architecture & Platform Ownership: Lead the architecture of Pantheon’s SecOps toolchain. - Threat Detection at Scale: Drive the detection engineering programme. - Incident Response Leadership: Own the incident response programme end-to-end. - Threat Intelligence Programme: Build and operate a structured threat intelligence capability. - Automation & Engineering Excellence: Architect and deliver scalable automation across alert triage, enrichment, investigation, and response. - EU Regulatory & Compliance Leadership: Serve as the SecOps subject matter expert for GDPR, NIS2, and relevant EU and Irish regulatory obligations. - Vulnerability & Exposure Management: Define the programme strategy for vulnerability triage, prioritisation, and remediation SLAs. - Abuse & Fraud Prevention: Own the technical strategy for abuse monitoring. - Business Resilience: Lead SecOps participation in business continuity and disaster recovery planning. - Executive Communication: Produce programme-level metrics, risk narratives, and strategic briefings for senior leadership and the board. - Engineering Enablement & Mentorship: Set the technical standard for SecOps practices across Pantheon. Qualifications - 10+ years of experience in information security, with 7+ years focused on security operations. - Deep expertise in architecting and operating enterprise-grade SIEM and SOAR platforms at scale. - Strong hands-on background in cloud-native security across GCP and/or AWS. - Expert-level knowledge of attack techniques and threat actor tradecraft. - Demonstrated experience leading major incident response. - Proficiency in scripting and automation applied to security engineering problems. - Experience owning or materially contributing to EU regulatory compliance requirements. - Track record of influencing technical direction beyond your immediate team. - Excellent written and verbal communication skills. Preferred Experience - Holding one or more recognized security certifications. - Experience building or scaling a detection engineering programme from the ground up. - Hands-on with threat intelligence platforms and structured intelligence lifecycle management. - Background in abuse monitoring, phishing detection, and takedown coordination. - Exposure to bug bounty programme operations and red team/purple team collaboration. - Experience managing security vendor relationships and making build-vs-buy decisions. - Prior experience working within the Irish or EU regulatory environment. Working At Pantheon From Ireland This role is based in Ireland and can be performed remotely within the country. Pantheon has a distributed engineering culture — you’ll collaborate primarily with teams in North America and Europe, which means some scheduling flexibility is expected for cross-timezone standups and incident response.

Related Categories

Related Job Pages

More Security Engineer Jobs

Aprio logo

Senior Penetration Testing Specialist

Aprio

Aprio, LLP is an accounting firm that is on a mission to advise its customers on “how to achieve what’s next.” As an employer, the company is recognized f

• Join Aprio's Risk Advisory and Assurance Services (RAAS) Team team and help clients maximize their opportunities. • Contribute to cutting-edge initiatives as we expand into CMMC, FedRAMP, PCI SSF. • Work on diverse, high-impact projects across a number of teams and industries. • Access unparalleled professional development through training, certifications, and hands-on experience with emerging technologies.

United States
$100K - $130K / year
Nexthink logo

Senior Corporate Security Engineer

Nexthink

Unparalleled Visibility Into Issue Detection, Diagnosis, and Remediation

Full TimeRemoteTeam 501-1,000Since 2011H1B No Sponsor

Company Description Nexthink is the leader in digital employee experience management software. The company provides IT leaders with unprecedented insight allowing them to see, diagnose and fix issues at scale impacting employees anywhere, with any application or network, before employees notice the issue. As the first solution to allow IT to progress from reactive problem solving to proactive optimization, Nexthink enables its more than 1,300 customers to provide better digital experiences to more than 18 million employees. Dual headquartered in Lausanne, Switzerland and Boston, Massachusetts, Nexthink has 9 offices worldwide. Job Description As a Senior Corporate Security Engineer at Nexthink, you will be responsible for the security of our internal environment. You won't just be monitoring logs; you will be architecting the security fabric that enables our rapid growth. Working in close partnership with IT, business teams and, partnering with our Cloud and Application Security teams, you will secure the identity, devices, and applications used by "Nexthinkers" worldwide. You will own the security of a complex SaaS ecosystem, and lead detection and response for the corporate environment. What You Will Do Identity-Centric Security Architecture - Contribute to the design and support the implementation of passwordless authentication and Zero Trust principles. - Manage secure provisioning and lifecycle management, ensuring least-privilege access across all business systems. - Partner with HR and IT to streamline onboarding/offboarding workflows, ensuring timely access revocation and auditability. Endpoint & Infrastructure Security - Define and enforce security baselines for our diverse fleet of endpoints (Windows, macOS) and mobile devices via MDM (Intune/Jamf). - Manage and tune EDR/XDR solutions to ensure high-fidelity detection on workstations and servers (Windows, Linux, macOS). - Secure the corporate Azure footprint, ensuring proper configuration of subscriptions, networking, and resources distinct from our production product environment. - Proactively identify and mitigate security risks in our corporate environment, conducting regular security assessments and vulnerability scans. - Coordinate vulnerability management and patch management - Collaborate with IT to automate endpoint compliance checks and remediation workflows. Security Engineering - Support the development and maintenance of Infrastructure-as-Code. - Ensure hardening and compliance of endpoints and servers. SaaS Security & Integration - Assess and secure third-party SaaS integrations (e.g., Salesforce apps, browser extensions, productivity tools) to prevent data leakage and over-privileged access. - Collaborate with Legal and Compliance to vet new vendors and tools. - Configure and maintain CASB and DLP policies to safeguard sensitive corporate data without hindering productivity. Detection, Response & Automation - Lead incident response activities for corporate security events (phishing, malware, lost devices). - Develop automation scripts (Python/PowerShell) and workflows (SOAR) to automate manual security tasks, evidence collection, and response actions. - Proactively hunt for threats within the corporate network and identity providers. - Develop incident response playbooks including technology specific procedures and forensics collection Audits and Compliance - Design and implement security controls to safeguard corporate resources, including endpoints, data storage, networking, computing and identity and access management. - Support and automate evidence collection for audits. Culture & Collaboration - Act as the primary security liaison to the IT Department and business teams, helping them build security into their operations (DevSecOps for IT). - Design and deliver technical security training and awareness campaigns for engineering and business teams. Qualifications - 5-8 years of hands-on experience in Corporate Security, IT Security Engineering, or a SOC role in a cloud-first environment. - Endpoint Mastery: Experience hardening operating systems (macOS/Windows) and managing security via MDM/UEM tools. - Vulnerability management: Proven experience in helping IT and business teams patching systems and infrastructures. - Coding Skills: Proficiency in Python and Terraform for automating APIs and security workflows. - Security Ops: Proven experience with EDR tools and SIEM log analysis. - Communication: Fluent in English with the ability to explain complex risks to non-technical stakeholders. - Proven ability to influence and drive security best practices across non-security teams. - Experience with security awareness training platforms and phishing simulation tools. Bonus Points - Identity Expertise: Deep technical knowledge of Okta and Microsoft Entra ID (Authentication policy, Conditional Access, SSO, SCIM, OIDC/SAML). - Experience implementing FIDO2/WebAuthn (Passwordless). - Proficient in PowerShell. - Familiarity with compliance standards (ISO 27001/27701, SOC 2, FedRAMP) - Experience securing Cloud Infrastructure (Azure/AWS) specifically for internal/corporate workloads. Why Join Nexthink Security? - Impact: You will report directly into the CISO organization and have a tangible impact on the daily lives of employees and the safety of the company. - Opportunity to work on cutting-edge security projects, with visibility and support from executive leadership. - Technology: We use top-tier security stacks. You won't be fighting with legacy on-premise hardware; we are cloud-native. - Culture: We value "Security as an Enabler," not a blocker. You will work in a supportive, highly technical environment in our Madrid hub Additional Information We are the pioneers and trailblazers of a global IT Market Category (DEX) that is shaping the future of how the world works, giving our customers' IT Teams total digital visibility across their enterprise. Our innovative solutions integrate real-time analytics, automation, and employee feedback across all endpoints. This enables our IT teams to solve complex technical challenges, create ever more productive workplaces, and deliver happy, satisfied employees in the digital workplace. With over 1000 employees across 5 continents, Nexthink operates as One Team, connecting, collaborating and innovating to continuously grow. We call our employees 'Nexthinkers' and our commitment to diversity, inclusion, and equity is second to none. We currently have over 75 nationalities working with us, from all cultures and backgrounds, speaking many different languages. If you are looking for a change and like a nice atmosphere, lots of challenges, and having fun while working, this is a great opportunity for you! Check what we offer: - Permanent Contract and a competitive compensation package. - Amazing centrally located offices near the Bernabeu Stadium. - Private Health Insurance (Sanitas) and daily meal vouchers of 11 EUR will be entirely covered by us. - Hybrid work model balancing office and remote work, with a structured approach for new hires to foster connections and onboarding. - Flexible Hours and unlimited vacation (employees have unlimited paid time off on top of the 23 days of holidays we offer) plus 3 company-paid volunteer days. - Up to 25 EUR per month for a gym subscription. - Flexible compensation plan for childcare & public transportation. - ‍ Reimbursement of up to 50% of the cost of English & Spanish classes. - Fresh fruit, cookies, soft drinks and protein shakes at the offie. - Regular company and team events like Pizza talks, Team Building activities, Christmas parties, hosting Meetups at the office and more! - Bonuses for referring successful hires after three months of continuous employment. - We offer a relocation package to people who are coming from another country. Please note that not all the benefits listed above are available for temporary, contract, and internship roles. To ensure you have the most up-to-date information, we recommend checking with your Recruitment Partner.

Spain
Job Closed
Full TimeRemoteTeam 1,001-5,000Since 2015H1B Sponsor

• Lead and support client-facing cybersecurity consulting engagements autonomously by delivering strategic advisory services. • Provide expert-driven recommendations, applying deep cybersecurity subject-matter knowledge, conducting strong qualitative analysis, and staying current on market and industry trends. • Communicate with clarity and confidence, facilitate client meetings, present results effectively, and build trust with stakeholders. • Develop and mentor junior team members, sharing expertise, giving constructive feedback, and fostering growth across Analysts and Consultants. • Contribute to Wavestone’s growth, proactively support business development, nurturing client relationships, spotting new opportunities, and participating in marketing, content creation, and internal initiatives. • Collaborating and coordinating across different Wavestone locations to participate in the global cybersecurity practice development.

Canada

Lead Associate Principal, Security Engineering

OCC - Options Clearing Corporation

OCC, which stands for Options Clearing Corporation, provides risk management financial services with the goal of bringing greater security to financial markets.

*****THIS POSITION IS NOT ELIGIBLE FOR VISA SPONSORSHIP*****To be considered for this position, applications and resumes are accepted only through our careers site by directly applying to the posted job. We do not accept unsolicited resumes or sales solicitations from staffing agencies. Any OCC employee wishing to submit a referral must do so through their Workday account. Any resume submitted outside of an active job posting will not be considered for employment. What You'll Do: Join our dynamic Security Engineering team as a Lead Associate Principal and make a significant impact on our organization's cybersecurity posture. In this role, you'll manage privileged access systems that protect our most critical assets, implement AI-based security capabilities, and help shape our security architecture. This position offers excellent growth opportunities as you'll work with best-in-class technologies while collaborating with cross-functional teams to solve complex security challenges. If you're passionate about cybersecurity and seeking a role where your expertise directly strengthens organizational resilience, this is an ideal next step for your career. Primary Duties and Responsibilities: To perform this job successfully, an individual must be able to perform each primary duty satisfactorily. - Provide 24x7 operational support for the suite of privileged management solutions (e.g., CyberArk, Hashi, PKI), including implementing hot fixes, resolving bugs, troubleshooting issues, performing break-fixes, managing secrets lifecycle, and delivering end-user support. - Maintain robust operational integrity of privileged access management infrastructure throughout its lifecycle (e.g., patching, version control, system upgrades, alignment with OCC/Security standards, etc.). Provide organizational subject matter expert on secrets management and privileged access management architecture, establishing and enforcing security as code principles throughout the environment. - Develop and implement system enhancements to improve platform user experience and automated integrations, while designing long-term solutions to address operational issues through innovative technologies including artificial intelligence for faster detection and remediation of functional and technical problems. Supervisory Responsibilities: None Qualifications: The requirements listed are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the primary functions. - Advanced knowledge of application authentication and authorization systems (i.e., Active Directory, oAuth 2.0, OIDC, AWS IAM, App Role, k8s, LDAPS, Kerberos, Certificate) - Working knowledge of the cloud ecosystem and CI/CD deployments with Terraform, Ansible, and Jenkins pipelines. - Working knowledge of security architecture design and principles including confidentiality, integrity and availability. Technical Skills: - Expertise in providing operational and engineering support for one or more of the following: CyberArk, HashiCorp Vault, Active Directory Certificate Services (ADCS), HSMs, and Public Key Infrastructure (PKI). - Expertise in scripting languages and developing in one or more of the following languages GoLang, Bash, Python, PowerShell, Ansible, and/or Terraform. - Expert level knowledge of privileged access management methodologies and techniques for on-prem and Cloud implementation. Education and/or Experience: - Experience in one or more of the following disciplines: security operations, development, engineering, or architecture - Experience supporting privileged access management and access controls programs. - Professional or personal experience using AI coding agents such as OpenAI Codex, Claude Code, or Gemini CLI. Certificates or Licenses: - NA About Us The Options Clearing Corporation (OCC) is the world's largest equity derivatives clearing organization. Founded in 1973, OCC is dedicated to promoting stability and market integrity by delivering clearing and settlement services for options, futures and securities lending transactions. As a Systemically Important Financial Market Utility (SIFMU), OCC operates under the jurisdiction of the U.S. Securities and Exchange Commission (SEC), the U.S. Commodity Futures Trading Commission (CFTC), and the Board of Governors of the Federal Reserve System. OCC has more than 100 clearing members and provides central counterparty (CCP) clearing and settlement services to 19 exchanges and trading platforms. More information about OCC is available at www.theocc.com. Benefits A highly collaborative and supportive environment developed to encourage work-life balance and employee wellness. Some of these components include: - A hybrid work environment, up to 2 days per week of remote work - Tuition Reimbursement to support your continued education - Student Loan Repayment Assistance - Technology Stipend allowing you to use the device of your choice to connect to our network while working remotely - Generous PTO and Parental leave - 401k Employer Match - Competitive health benefits including medical, dental and vision Visit https://www.theocc.com/careers/thriving-together for more information. Compensation - The salary range listed for any given position is exclusive of fringe benefits and potential bonuses. If hired at OCC, your final base salary compensation will be determined by factors such as skills, experience and/or education. - In addition, we believe in the importance of pay equity and consider internal equity of our current team members as part of any final offer. - We typically do not hire at the maximum of the range in order to allow for future and continued salary growth. We also offer a substantial benefits package as noted on www.theocc.com/careers - All employees may be eligible for a discretionary bonus. Discretionary bonuses are based on various factors, including, but not limited to, company and individual performance and are not guaranteed. Salary Range $145,200.00 - $236,700.00 Incentive Range 8% to 15% This position is eligible for an annual discretionary incentive compensation award, for which the target range is listed above (see Incentive Range). The amount of such award, if any, will be based on various factors, including without limitation, both individual and company performance. Step 1 When you find a position you're interested in, click the 'Apply' button. Please complete the application and attach your resume. Step 2 You will receive an email notification to confirm that we've received your application. Step 3 If you are called in for an interview, a representative from OCC will contact you to set up a date, time, and location. For more information about OCC, please click here. OCC is an Equal Opportunity Employer

United States
$145.2K - $236.7K / year