The Security Operations team is responsible for the security monitoring and operational security policies of the Mattemost organization.

Areas of Ownership

• Security Incident Response Program

  • Active monitoring and analysis of security events taking place across company, product, and service, platforms

  • Implementation, upkeep, and growth of security monitoring and analysis platforms

  • Availability of log ingestion and processing infrastructure

  • Create, review, and enforce operational security policies, procedures, along with controls related to existing and future-planned compliance frameworks

• Infrastructure Vulnerability Management Program

  • Maintain visibility of industry trends, emerging security issues, 0day/vulnerabilities

  • Contribute to customer security questionnaires on operational security and compliance topics

  • Act on results of Red Team / Penetration Testing against Mattermost (the company) and product/service infrastructure

  • Monitoring and upkeep of Endpoint Detection & Response (EDR)

  • Access control for Engineering tools and services, and integration with Okta

  • Engage in verification and impact of product vulnerabilities as it relates to Community and Cloud-hosted instances

• Analysis, verification, and reaction to phishing and other malicious email

  • Management and upkeep of Vault infrastructure and policies

  • Management and upkeep of Teleport (cloud/company) platform

  • Management and upkeep of Pritunl VPN platform