Security Engineer III (Response)
Your work days are brighter here.
At Workday, it all began with a conversation over breakfast. When our founders met at a sunny California diner, they came up with an idea to revolutionize the enterprise software market. And when we began to rise, one thing that really set us apart was our culture. A culture which was driven by our value of putting our people first. And ever since, the happiness, development, and contribution of every Workmate is central to who we are. Our Workmates believe a healthy employee-centric, collaborative culture is the essential mix of ingredients for success in business. That’s why we look after our people, communities and the planet while still being profitable. Feel encouraged to shine, however that manifests: you don’t need to hide who you are. You can feel the energy and the passion, it's what makes us unique. Inspired to make a brighter work day for all and transform with us to the next stage of our growth journey? Bring your brightest version of you and have a brighter work day here.
About the TeamIn support of the phenomenal growth in the number of Workday customers and Workmates, we are growing our Security Incident Response Team (SIRT) to continue to deliver world class capabilities. SIRT is building the Security Center of the future to further our customer’s confidence in our platform.
This means we are continually innovating our investigative capabilities in the areas of response, digital forensics (DFIR), threat hunting, and automation. We respond quickly, efficiently and regain control by minimizing the threat of damage caused by malicious activities. We are a highly visible global security function that collaborates closely with security tooling and threat intelligence. We work hard and push each other to constantly improve, but in an environment that is considered the best company to work for.
About the Role
Workday is looking for a passionate security professional. This is an opportunity to contribute to a highly visible team involved in all major cybersecurity events, where your skills and experience will be used to inspire confidence and trust in Workday.
This is a highly technical monitoring and response role with the understanding that you are already conversant in incident monitoring and handling, security automation, system security, network security, incident response and threat hunting. This role will push you to understand the inner workings of our SaaS platform and couple that with traditional security practices on premise. We have resources in every cloud, including our own. We offer a hybrid/flexible schedule for employees.
3+ years relevant experience in a similar security role
Tertiary level qualification in an Information Technology related field, relevant certification/s, or equivalent experience
Certification/s and training (e.g. Offensive Security, SANS, CISSP, etc.)
Experience responding to operational queue work as part of a follow-the-sun model
Ability to drive multiple projects and priorities while managing operational responsibilities
Building and maintaining investigation and/or response tools
Demonstrated knowledge of adversary TTPs (Tactics, Techniques and Procedures)
Deep understanding of network and application security threats, attack techniques, and mitigation options and network related protocols (e.g. TCP/IP, IPSEC, routing protocols, etc.)
Python, Ruby, and/or other scripting languages, and a good understanding of Linux/OSX and Windows
Excellent verbal and written communication skills
Experience in some or all of the following:
Experience with cloud security concepts, solutions, and automation
Experience in incident response and incident management
Experience with Threat Hunting techniques
Experience with SIEM and SOAR security technologies and solutions
Experience in performing digital forensics and security acquiring data from various sources
Workday Pay Transparency Statement
The annualized base salary ranges for the primary location and any additional locations are listed below. Workday pay ranges vary based on work location. As a part of the total compensation package, this role may be eligible for the Workday Bonus Plan or a role-specific commission/bonus, as well as annual refresh stock grants. Recruiters can share more detail during the hiring process. Each candidate’s compensation offer will be based on multiple factors including, but not limited to, geography, experience, skills, job duties, and business need, among other things. For more information regarding Workday’s comprehensive benefits, please click here.Primary Location: USA.CA.Pleasanton
Primary Location Base Pay Range: $132,000 USD - $198,000 USD
Additional US Location(s) Base Pay Range: $114,000 USD - $198,000 USD
Our Approach to Flexible Work
With Flex Work, we’re combining the best of both worlds: in-person time and remote. Our approach enables our teams to deepen connections, maintain a strong community, and do their best work. We know that flexibility can take shape in many ways, so rather than a number of required days in-office each week, we simply spend at least half (50%) of our time each quarter in the office or in the field with our customers, prospects, and partners (depending on role). This means you'll have the freedom to create a flexible schedule that caters to your business, team, and personal needs, while being intentional to make the most of time spent together. Those in our remote "home office" roles also have the opportunity to come together in our offices for important moments that matter.
Pursuant to applicable Fair Chance law, Workday will consider for employment qualified applicants with arrest and conviction records.
Workday is an Equal Opportunity Employer including individuals with disabilities and protected veterans.
Are you being referred to one of our roles? If so, ask your connection at Workday about our Employee Referral process!