Senior Security Engineer - Threat and Vulnerability - Remote

Overview

Octane® is revolutionizing recreational purchases by delivering a seamless, end-to-end digital buying experience. We connect people with their passions by combining cutting-edge technology and innovative risk strategies to make lifestyle purchases - like powersports vehicles, RVs, and OPE - fast, easy, and accessible.

Octane adds value throughout the customer journey: inspiring enthusiasts with our editorial brands, including Cycle World® and UTV Driver®, instantly prequalifying consumers for financing online, routing customers to dealerships for an easy closing, and supporting customers throughout their loan with superior loan servicing.

Founded in 2014, we’re a company with 550+ employees and over 30 OEM and 4,000 dealer partners.

Octane is seeking an experienced Senior Security Engineer specialized in Threat and Vulnerability. This role is responsible for designing, implementing, and maintaining a Security Operations Center (SOC) and Incident Response program to enhance the company’s security posture. The position involves developing and integrating security technologies such as SIEM, SOAR, and threat intelligence platforms, as well as maintaining integrations with key security tools. The role includes designing alerts, metrics, and dashboards to monitor security incidents, collaborating with cross-functional teams to investigate security threats, and mentoring junior engineers on best practices. Additionally, the role requires expertise in cloud security, automation, and infrastructure protection, along with hands-on experience responding to security incidents. Ideal candidates have at least seven years of experience in security operations, strong scripting and integration skills, and familiarity with tools like Datadog, Splunk, and Terraform. Relevant security certifications are a plus. The preference is for this role to be hybrid based in our Dallas/Irving, Texas or NYC office, but will be open to remote candidates as well.

In Short

• Design, implement, and maintain a comprehensive Security Operations Center (SOC) and Incident Response program.
• Develop, integrate, and automate security technologies such as SIEM, SOAR, and Threat Intelligence platforms.
• Design and implement alerts, metrics, runbooks, and dashboards to track security posture.
• Mentor and coach junior engineers on SOC and Incident Response best practices.
• Respond to security incidents and support the team’s after-hours on-call schedule.
• Collaborate with Engineering, IT, and other teams to investigate potential security issues.
• Design and implement security architectures and solutions to protect infrastructure.
• Stay up-to-date with evolving security threats and technologies.

Requirements

• 7+ years of experience in Security Operations, Incident Response, or a related field.
• 4+ years of experience designing secure systems in cloud or virtualized environments.
• Advanced knowledge of security technologies such as SIEM, SOAR, EDR, firewalls.
• Experience with scripting languages such as Python, PowerShell, or Bash.
• Experience integrating tools using REST API connections.
• Background in security architecture and design.
• Experience with security operations tools such as Datadog, Splunk, ELK.
• Experience with infrastructure as code tools such as Terraform.
• Experience leading the incident response process for security incidents.
• Relevant certifications such as CEH, SANS, CISM, CISSP are a plus.

Benefits

• Robust Health Care Plans (Medical, Dental & Vision).
• Generous Parental Leave.
• Flexible Time Off (FTO).
• Retirement Plan (401k) with company match.
• Educational Assistance/Tuition Reimbursement up to $3K/year.
• Life Insurance (Basic, Voluntary & AD&D).
• Short Term / Long Term Disability.
• Robust Ancillary benefits including accident insurance.
• Wellhub (Gympass) Wellness Benefit.
• Powersports Safety Benefit.