SiriusXM and Pandora have joined together to create the leading audio entertainment company in the U.S. Together, we are uniquely positioned to lead a new era of audio entertainment by delivering the most compelling subscription and ad-supported audio experiences to millions of listeners -- in the car, at home and on the go. Our talent, content, technology and innovation continue to be at the forefront, and we want you to be a part of it! Check out our current openings below and at .
Position Summary:
The Principal Engineer, Security Operations will be the key embedded resource working to steadily improve and maintain the security posture of assigned Sirius XM + Pandora brands. The successful candidate will be responsible for ensuring the security of our hybrid cloud infrastructure while maintaining a high level of Developer enablement and guiding and mentoring users on best practices as pertains to security of the infrastructure.
As a staff member reporting to the office of the Sirius XM Chief Information Security Officer, you will strive on a daily basis to ensure the health of security endpoints and monitoring in our cloud and on premise networks, and work to detect and prevent unauthorized incursions into our network. You will be the principal point of contact for security incident response and will assist in maintaining and secure architecture. Additionally, you will have the opportunity to drive the technical implementation of our security solutions by providing necessary guidance and technical leadership to more junior engineers, and to share expertise with your peers and more senior resources across Sirius XM + Pandora.
Minimum Qualifications:
Bachelors or Master's Degree in a Cybersecurity or related discipline, or equivalent, relevant experience.
CISSP certification, with one or more other professional certifications preferred (OSCP, GSEC, GCIA, CISM, CEH, etc.)
10 years' experience in Security Operations and/or the IT industry, with a preference for active DevSecOps roles
Expertise in secure cloud architecture and security including containers, SDN, HA, serverless compute
Operational experience with IaC tools like Terraform, AWS CloudFormation, or Google Cloud Deployment Manager
Experienced with cloud security ops and monitoring tools like AWS Guard Duty and Security Hub, or Google Security Command Center
Working knowledge of Windows/Unix system administration and security vulnerabilities, in particular those exploitable in ransomware attacks
Desired Qualifications:
Duties and Responsibilities:
Perform detailed forensics for security related incidents
Develop, evolve, and manage monitoring and alerting solutions to create a deep understanding of trends, anomalies, and incidents
Assist in architecture and planning for company wide security efforts
Expert on authentication paradigms: IaM policy management and Cloud KMS solutions
Develop and implement system hardening standards conforming to CIS benchmarks
Implement MSSP services such as Security Command Center, RedLock, Threat Stack, Dome9, Evident.io
Develop, evolve, and manage monitoring and alerting solutions to create a deep understanding of trends, anomalies, and incidents
Support cloud WAF solutions, user behavioral analysis tools like NuDetect and Human, and CASB solutions
Monitor and/or manage stateful firewalls: Juniper SRX, PaloAlto Networks, etc.
Deploy and maintain security endpoints like Sentinel One
Deploy, monitor and maintain automation solutions: Ansible, Chef, etc., and with automated SAST and DAST pipeline solutions in a mature DevOps practice
Deploy and manage SIEM environments: Chronicle, AlienVault, Splunk, ELK
Mentor junior members of your team as well as individuals in other operational groups.
Perform detailed forensics for security related incidents in close cooperation with centralized incident response apparatus
Integrate local policies with and ensure compliance to enterprise security policies and standards
Support penetration testing to find vulnerabilities that might be exploited by malicious third parties
Lead mitigation efforts in response to vulnerabilities uncovered by periodic scans
Support the centralized security architecture team with knowledge and insights about the infrastructure in your charge
Supervisory Responsibilities:
Requirements and General Skills:
Additional Technical Skills:
More details about our company benefits can be found !
Our goal at SiriusXM+Pandora is to provide and maintain a work environment that fosters mutual respect, professionalism and cooperation. SiriusXM+Pandora is an equal opportunity employer that does not discriminate on the basis of actual or perceived race, creed, color, religion, national origin, ancestry, alienage or citizenship status, age, disability or handicap, sex, gender identity, marital status, familial status, veteran status, sexual orientation or any other characteristic protected by applicable federal, state or local laws.
The requirements and duties described above may be modified or waived by the Company in its sole discretion without notice.