Senior AWS Security Engineer
Santa Ana, California, United States
Collectors is the leading creator of innovative technology that provides value-added services for collectors worldwide. We grade, authenticate, vault, and help sell millions of high-value, record-setting collectibles, all while modernizing and digitalizing the process to further our mission of helping collectors pursue their passions. Our services span collectible coins, trading cards, Funko Pops!, video games, event tickets, autographs, and memorabilia. Our subsidiaries include PSA, PCGS, WATA, Card Ladder, and the Long Beach Expo collectibles trade show. Since our founding in 1986, we have graded and authenticated millions of items. We employ more than 1,700 people across our headquarters in Santa Ana and offices in Jersey City, Seattle, Hong Kong, Paris, Shanghai, and Tokyo.We’re transforming the collecting experience with technology that brings authentication, grading, and trading into the modern era. Our products are equalizing the playing field by providing tools that make complex research analytics — including pricing, scarcity reports, and historic sales data — accessible to every collector, old or new. Our engineering mission is to democratize technology while promoting innovation, collaboration, and continuous learning throughout the organization. Our engineering team is focussed on utilizing advanced technology in agile settings, with the goal of improving the customer experience for every collector.
At Collectors, our Cybersecurity Team is dedicated to protecting our digital assets and ensuring the integrity of our platform. Collectors Cybersecurity team is committed to utilize cybersecurity, risk and privacy best practices on our platforms to protect our customers, employees and our brand. Composed of skilled professionals with diverse backgrounds in security operations, incident response, and cloud security, we work tirelessly to identify and mitigate threats in a fast-paced environment. Our team leverages cutting-edge tools and technologies, to safeguard our infrastructure. We prioritize collaboration across departments, fostering a culture of security awareness and proactive risk management. We are seeking a seasoned Senior AWS Security Operations Engineer to join our team. In this role, you will manage our security programs, lead incident response efforts, and secure our AWS environments. You will be dedicated to proactively identifying and mitigating security threats while fostering a culture of continuous improvement.
What You’ll Do:
- Security Operations: Perform daily security operations, ensuring efficient monitoring and optimization of tools like CrowdStrike Falcon and CrowdStrike SIEM platforms.
- Incident Response: Lead incident response using MimeCast, CloudFlare, and CrowdStrike, Cato, Okta, and AWS security services; develop runbook for timely detection and resolution of incidents.
- AWS Security: Secure AWS organization, manage AWS security services (e.g., Security Hub, GuardDuty, IAM Analyzer), and conduct regular security assessments.
- Security Automation: Develop automation scripts in Python or JavaScript to enhance operations and create custom integrations for log analysis or threat hunting.
- Continuous Monitoring: Establish monitoring controls & tools to identify threats and stay updated on emerging security trends.
- Collaboration: Work with cross-functional teams to align security initiatives with business objectives; communicate risks clearly to stakeholders.
- Project Leadership: Lead multi-team security projects, fostering a culture of awareness and proactive risk management.
- Analytical Problem-Solving: Troubleshoot incidents, prioritize vulnerabilities, and conduct post-incident reviews to drive improvements.
- Documentation and Reporting: Maintain security documentation and prepare reports for senior leadership, highlighting key metrics and recommendations
- Vulnerability Management: Oversee vulnerability lifecycle management with tools like Tenable.io; prioritize and coordinate remediation efforts.
Who You Are
- 10+ years of experience and expertise in running security operations, leading incident response activities and securing AWS environments
- Hands-on expertise and extensive experience with CrowdStrike Falcon and customizing SIEM platforms ingesting logs from multiple sources ( Window and Linux Servers).
- Experience with incident response tools (Incident.io, MimeCast, CloudFlare, Cato Networks, Okta) for incident detection, response and resolution
- Proficient with AWS security services such as Security Hub, GuardDuty, Config, Access Analyzer, OpenSearch, Athena, and Bedrock/Sagemaker.
- Proficient with building and operating threat hunting systems, such as Logstash, OpenSearch, Open Sigma, and Crowdstrike SIEM.
- Proficient in programming with Python or JavaScript for security automation, log analysis and custom integrations
- Knowledge in penetration testing method & tools.
- Nice to have vulnerability management experience with vulnerability lifecycle management with Kenna Security or Vulcan Cyber.
- Focused on continuous monitoring, threat anticipation, and risk management.
- Problem-solver, strong communicator, collaborative leader, proactive, and detail-oriented.
- Analytical mindset for troubleshooting and vulnerability prioritization.
- Clear in explaining complex technical details to both technical and non-technical stakeholders.
- Able to lead projects that span multiple teams and coordinate across platforms.
The salary range for this position is $135,000 - $220,000. Actual compensation on this range varies based on a variety of non-discriminatory factors, including location, job level, experience, and skill set. This role may be eligible for bonuses, commissions, or other forms of compensation, please ask your recruiter for details.
Reasons To Join Us:
- Health Insurance: All full-time employees are eligible to enroll in Medical, Dental, and Vision
- 401(K) Matching Plan: We are proud to offer a competitive 401k matching plan to our employees to support their future financial goals
- Vacation: All full-time employees are eligible for a flexible paid vacation
- Holiday Pay: All regular, full-time employees are eligible for nine company paid holidays Employee Discounts: Employees receive discounts on select grading services for approved submissions
- Flexible Hours: Many of our teams offer flexible schedules with varying shifts and will work with you to accommodate your needs
- Fun Working Environment: Our team members are invited to participate in celebrations, holiday events, and team building activities
Candidates must be authorized to work in the United States.
Qualified applications with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.
#LI-remote
Collectors may use e-verify to validate your ability to work legally in the United States.
We are aware that there are instances where individuals are receiving job offers that fraudulently allege to be from Collectors or one of our business units. This type of fraud can be carried out through false websites, through fake e-mails claiming to be from the company or through social media. We never ask for personal information such as your bank account, Social Security numbers or National IDs, nor do we send or request payments for the purchase of business-related equipment. If you suspect fraud, please reach out to jobs@collectors.com.
We are committed to equal employment opportunity regardless of race, color, ethnicity, ancestry, religion, national origin, gender, sex, gender identity or expression, sexual orientation, age, citizenship, marital or parental status, disability, veteran status, or other class protected by applicable law. We believe that a team that represents a variety of backgrounds, perspectives, and skills will better service the diverse community of collectors we support.
If you require an accommodation to apply or interview with us due to a disability or special need, please email people@collectors.com.
U.S. residents: for disclosures relating to personal information we collect during the employment application and recruitment process, please see our Privacy Notice for U.S. Applicants.
Explore other available openings at collectors.com/careers.
Job Profile
- Collaborate with teams
- Develop automation scripts
- Establish monitoring controls
- Lead incident response
- Lead security projects
- Manage security programs
- Secure AWS environments
- Troubleshoot incidents
Agile AWS Cato Cloudflare Cloud Security CrowdStrike Cybersecurity GuardDuty IAM Analyzer Incident Response Javascript Leadership Mimecast Okta Operations Python Reporting Research Risk Management Security Hub Security Operations
TimezonesAmerica/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9