Security Engineering, Senior at Medallia

Capital City of Prague, Prague, Czechia -

Full Time

Start Date

Immediate

Expiry Date

01 Sep, 26

Salary

0.0

Posted On

03 Jun, 26

Experience

5 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

SIEM, SOAR, EDR, Cloud Security, MITRE ATT&CK, Incident Response, Terraform, Python, Go, Bash, Kubernetes, GitOps, AWS, GCP, Azure, OCI

Industry

Software Development

Description

Overview At Medallia, the Security Operations team increases Medallia’s long-term value by building enterprise-grade, best-in-class security to detect indicators of compromise and security malfeasance, as well as leading Medallia’s security incident response and investigative capabilities across the entire organization. We are passionate about security, threat hunting, automation, and rapid iteration, and love creating pragmatic solutions to challenging problems. We work closely with our Red-Team and perform Tabletop exercises that allow us to build company-wide muscle memory for responding to incidents. As a next-generation Security Operations team, DevSecOps methodology is our focus, and our engineers utilize best-in-class tools to deliver robust security capabilities across our multi-cloud platform. We are looking for a Security Engineering, Senior that shares our passion and be able to work closely with our global engineering teams and ensure that we have best-in-class detection and response capabilities deployed throughout our platform. Responsibilities Lead the strategy and architecture for Medallia’s detection and response platforms (SIEM, SOAR, EDR, Cloud Security), ensuring scalability, coverage, and alignment with threat models and business risk. Design and implement high-fidelity, high-quality detections using advanced pattern matching, ML-supported analytics, statistical modeling, behavior profiling, and attacker TTP mapping (MITRE ATT&CK). Act as a lead incident commander or technical lead during complex, high-severity security incidents, driving root cause analysis, containment, remediation, and executive-level communication. Build repeatable playbooks, automation modules, and decision frameworks that improve response velocity and reduce analyst load. Architect and implement large-scale automation and orchestration to eliminate manual toil within Security Operations. Lead the design of security data pipelines, enrichment workflows, and automated response systems leveraged by SOC and IR teams. Lead in building and maintaining security platforms using IaC methodologies (Terraform, Packer, Kubernetes, GitOps, etc.). Develop high-quality automation and tooling using languages such as Python, Go, and Bash. Qualifications Minimum Qualifications Extensive experience (6 or more years) in Security Operations, Security Detection, Incident Response, and Security Automation at scale. Deep knowledge of Cloud providers, AWS, GCP, Azure, OCI especially hands-on experience on Cloud Security Posture Management: IAM Roles, Policies, etc. Demonstrated ability to design and deliver cross-functional security operations initiatives. Prior experience working with open-source tools like Terraform, Packer, GIT and Jenkins. Strong communication skills with the ability to present to technical and non-technical audiences. Preferred Qualifications Experience leading incident command for high-severity incidents. Experience building detection-as-code frameworks or automated testing pipelines. Contributions to open-source security tooling or threat research. Certifications such as GCTI, CISP, or similar. At Medallia, we celebrate diversity and recognize the value it brings to our customers and employees. Medallia is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age (40 and over), disability, genetic information, veteran status or military service, or any other status protected by state or local law. Individuals with a disability who need an accommodation to apply please contact us at ApplicantAccessibility@medallia.com. For information regarding how Medallia collects and uses personal information, please review our Privacy Policies. Applications will be accepted for 30 days from the date this role was posted or until the role has been filled.

Responsibilities

Lead the strategy and architecture for detection and response platforms while designing high-fidelity detections and automation. Act as a technical lead during high-severity security incidents and build scalable security data pipelines using IaC methodologies.