.OverviewMedallia is the pioneer and market leader in Experience Management. Our award-winning SaaS platform, Medallia Experience Cloud, leads the market in the understanding and management of experience for candidates, customers, employees, patients, citizens and residents.We are more than a software company. We want to be known as a company that does the right thing, no matter the challenge or controversy. We are committed to creating a culture that values every person and every experience. Individual life experiences shape the way we interact with the world, which is why we encourage people to bring their whole selves to work each day. The strength of our global workforce is the most significant contributor to our success.We believe: Every Experience Matters. Talent is Everywhere. All Belong Here.At Medallia, we hire the whole person.The Role and TeamAt Medallia, the Security Operations team increases Medallia's long-term value by building enterprise-grade, best-in-class security to detect indicators of compromise and security malfeasance, as well as leading Medallia's security incident response and investigative capabilities across the entire organization. We are passionate about security, threat hunting, automation, and rapid iteration, and love creating pragmatic solutions to challenging problems.We work closely with our Red-Team and perform Tabletop exercises that allow us to build company-wide muscle memory for responding to incidents.As a next-generation Security Operations team, DevSecOps methodology is our focus, and our engineers utilize best-in-class tools to deliver robust security capabilities across our multi-cloud platform.We are looking for a Senior Security Operations that shares our passion and be able to work closely with our global engineering teams and ensure that we have best-in-class detection and response capabilities deployed throughout our platform.ResponsibilitiesBuild Security Use Cases and implement them in the SIEM and SOAR. Utilize pattern matching techniques, machine learning algorithms, statistical models, and other novel capabilities or techniques to detect and respond to insider threats, advanced persistent threats/attackers ("APT"), and anomalous behavior of systems.Build detection mechanisms that identify indicators of compromise and other forms of security malfeasance or misconfiguration.Respond to Security Incidents and lead investigations related to real or potential indicators of compromise.Build automation around our security response and reduce the need for high-touch, human intervention, and investigation into common security events and patterns.Utilize various open-source tools, platforms and scripting languages like Terraform, Packer, Linux, Kubernetes, GIT, Python, and Go to instrument and build our security platforms and tools using an infrastructure-as-code model on a hybrid (cloud and on-premise) platform