Secure the Future of Finance with Ramp
At Ramp, we're not just building a company; we're architecting the future of finance with AI at its core. We're seeking sharp, driven cybersecurity professionals to join our mission to protect our innovative platform and our customers' financial data. If you're passionate about threat hunting, incident response, and building robust security defenses, Ramp is the place for you.
Ramp is the leading financial operations platform, empowering over 40,000 businesses to save time and money. We're not just automating tasks; we're building intelligent agents that proactively manage financial operations. Join us and be a part of a team that's redefining how businesses handle their finances.
Ready to build something impactful? Ramp is backed by top investors like Thrive Capital, Sequoia Capital, and Founders Fund, and recognized as a Fast Company Most Innovative Company, LinkedIn Top U.S. Startup, and Forbes Cloud 100 company.
About the Role: Detection & Response Security Analyst
We're seeking a talented and experienced Detection & Response Security Analyst to join our growing security team. In this role, you will play a critical role in building and maturing our Detection & Response program, directly impacting Ramp's security posture. You'll be on the front lines, identifying and responding to security incidents, enhancing our detection capabilities, and working closely with our security engineering team to automate remediation efforts.
Important: This role requires a hybrid work model, with at least 2 days per week in our NYC HQ near Madison Square Park.
What You'll Do:
Respond to and assist with security requests and incidents reported by Ramp team members.
Proactively identify gaps in existing security processes and drive the implementation of innovative solutions from concept to deployment.
Thoroughly review logging, alerting, and audit sources to identify potential security incidents and conduct initial triage.
Contribute to the development, maintenance, and tuning of runbooks and security alerts to enhance incident handling and improve alert efficacy.
Collaborate closely with Ramp Security Engineers to improve security alerting and automated remediation workflows.
Leverage our log ingestion platform to perform security analytics and identify attacker tactics, techniques, and procedures (TTPs).
What You Need:
Minimum 5 years of hands-on experience in incident response, including host and cloud forensics and/or security detection.
Minimum 3 years of experience with a programming/scripting language (Bash, Python, etc.) for automation and analysis.
Proven experience with query-based log management solutions (ELK, Datadog, Panther, etc.) for security analysis and incident investigation.
Exceptional deductive reasoning and critical thinking skills to effectively analyze complex security issues.
Excellent communication skills, with the ability to clearly and concisely explain complex security issues to both technical and non-technical audiences.
Strong written communication skills and the ability to document technical details accurately and succinctly.
A proactive "can-do" attitude, willing to tackle any task, big or small, to get the job done.
Nice-to-Haves:
Relevant Security Certifications such as CompTIA Security+, Network+, etc.
Prior experience working in a fintech or startup environment.
Benefits (for U.S.-based full-time employees)
100% medical, dental & vision insurance coverage for you
Partially covered for your dependents
One Medical annual membership
401k (including employer match on contributions made while employed by Ramp)
Flexible PTO
Fertility HRA (up to $5,000 per year)
WFH stipend to support your home office needs
Wellness stipend
Parental Leave
Relocation support to NYC or SF
Pet insurance
Referral Instructions
If you are being referred for the role, please contact that person to apply on your behalf.
Other Notices
Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.
Ramp Applicant Privacy Notice