Job Description:

Now, more than ever, the Toast team is committed to our customers. We’re taking steps to help restaurants navigate these unprecedented times with technology, resources, and community. Our focus is on building the restaurant platform that helps restaurants adapt, take control, and get back to what they do best: building the businesses they love. And because our technology is purpose-built for restaurants, by restaurant people, restaurants can trust that we’ll deliver on their needs for today while investing in experiences that will power their restaurant of the future.

The Integrated Security Ops Center (ISOC) team manages the monitoring of vulnerability scanning, ongoing security audits and assists in the process of satisfying all compliance and security requirements. As an Engineer I, you will be responsible for remote monitoring of our critical cloud infrastructure for security threats. 

About this roll* (Responsibilities)

• Analyzing, troubleshooting and resolving network security alerts detected by monitoring using data from monitoring/diagnostic tools and providing detailed notes on triage efforts for incidents.
• Provide Tier 1 Networking and Security operational support to meet compliance and security requirements.
• Escalate alerts as needed that require higher level support.
• Perform incident resolution tasks based on approved Standard Operating Procedures (SOPs).
• Respond to and resolve automated alerts generated from our monitoring system in a timely fashion.
• Exercise the ability to learn quickly and retain knowledge while striving for constant improvement and development.
• Other duties and responsibilities as assigned.

Do you have the right ingredients*? (Requirements)

• Experience:
• 1-3 years experience in a Security Operations Center (SOC) or a security related role is required.
• Required Skills:
• Experience working with a SOAR or SIEM, supporting incident monitoring, analysis and response.
• Understanding of security concepts and technologies including firewalls, intrusion detection systems, malware outbreaks, network intrusions and unauthorized access attempts.
• Knowledge in common network protocols (TCP/IP, DNS, HTTP/HTTPS etc.) 
• Familiarity with various operating systems such as Windows, macOS and Linux.
• Experience with Splunk, AWS, Recorded Future, Orca Security (CNAPP), CrowdStrike (EDR), Torq, DataDog, Jamf or Microsoft Intune.
• Communication & Collaboration Skills:
• Excellent listening and communications skills, both verbal and written. 
• Ability to provide and maintain detailed documentation in each ticket.  
• Organized, detail oriented and self-motivated. 
• Certifications:
• CompTIA Network+ and CompTIA Security+

Special Sauce*: (Nice to have, non-essential skills)

• Hands-on experience with entry level troubleshooting of Cisco Meraki/Ubiquiti Unifi or equivalent routers/WLAN devices.

*Bread puns encouraged but not required