Security Operations

The Security Operations team is responsible for the security monitoring and operational security policies of the Mattemost organization.

Areas of Ownership

  • Security Incident Response Program
    • Active monitoring and analysis of security events taking place across company, product, and service, platforms
    • Implementation, upkeep, and growth of security monitoring and analysis platforms
    • Availability of log ingestion and processing infrastructure
    • Create, review, and enforce operational security policies, procedures, along with controls related to existing and future-planned compliance frameworks
  • Infrastructure Vulnerability Management Program
    • Maintain visibility of industry trends, emerging security issues, 0day/vulnerabilities
    • Contribute to customer security questionnaires on operational security and compliance topics
    • Act on results of Red Team / Penetration Testing against Mattermost (the company) and product/service infrastructure
    • Monitoring and upkeep of Endpoint Detection & Response (EDR)
    • Access control for Engineering tools and services, and integration with Okta
    • Engage in verification and impact of product vulnerabilities as it relates to Community and Cloud-hosted instances
  • Analysis, verification, and reaction to phishing and other malicious email
    • Management and upkeep of Vault infrastructure and policies
    • Management and upkeep of Teleport (cloud/company) platform
    • Management and upkeep of Pritunl VPN platform