Geotab Careers

Incident Response Engineer

Basis:

Full Time

Team:

Information Security

Location:

Oakville, ON, Canada

Who is Geotab
Geotab, a global leader in connected transportation and IoT, is one of the fastest-growing technology companies in North America and a certified “Great Place to Work.” Each day, Geotab processes billions of data points from over 1.8 million connected vehicles. Geotab extracts actionable insights from this data, empowering businesses to track and manage fleets of every size. Geotab’s hardware devices, software platforms and applications help keep drivers in over 130 countries compliant, safe and efficient. Global demand for telematics is increasing and Geotab is leading the way. Are you ready to join us? To see what it’s like to be a Geotabber, follow us @InsideGeotab on Instagram, Twitter or Facebook today!
Who we are looking for
We are always looking for amazing talent who can contribute to our growth and deliver results! Geotab is actively seeking an Incident Response Engineer who will primarily monitor and respond to potential threats to Geotab. This person will be on the lookout for risks, threats, and vulnerabilities, and take action to create an incident response plan, including recording and analyzing the risks. If you love technology, are passionate about security, and are keen to join an industry leader, we would love to hear from you!
What are the details of this position
As an Incident Response Engineer, your key area of responsibility will be to develop a deep understanding of Geotab’s security programs, which will include securing Geotab’s software, hardware and supply chain. You will play a critical role in guiding Reseller security practices and provide thought leadership in the market. Each day, you will monitor and respond to potential threats, mitigating such threats by collecting evidence and completing forensic analyses. You will be work closely with the existing Security Team, as well as Developers and other internal stakeholders to respond, react, and recover during security breaches. To be successful in this role you will be a security-conscious individual, who has security on your mind 24/7. You will have a sense of urgency and the ability to adapt to security situations and identify, protect, respond, react and recover accordingly. An ideal candidate will come from a security-focused background, have exposure to industry-standard tools and be familiar with resolving security incidents.
Duties and Tasks/Essential Functions
  • Use appropriate logs and tools to determine whether a breach has occurred, and determine and document the scope of the event(s) - including, but not limited to identifying the affected products, systems and endpoints

  • Help determine security risk to Geotab by quantitatively evaluating risk using industry standard metrics (such as CVSS)

  • Reproduce exploits and attacks to analyze adversary Tactics, Techniques, and Procedures to to generate new signatures to enhance detection capability

  • Escalate incidents internally and according to protocol, to ensure all necessary parties are informed and actively engaged where necessary

  • Assist in developing mitigation and remediation steps and Incident Response programs

  • Ensuring that Geotab's compliance requirements are met (ie NIST 800-53)

  • Provide regular reporting back to Security Management team

  • Develop Big Data skills to leverage data to improve monitoring

  • Directly support GO device, MyGeotab, and MyAdmin vulnerability investigations, with a goal of driving a vulnerability patch cycle including open source software updates

  • Identify, track, and report on emerging threats to Geotab’s security, products, and customers

  • Support Engineering teams to provide in-depth technical analysis of security issues

  • Prioritize and coordinate case-specific response activities, driving timely and appropriate remediation of issues

  • Track and report on vulnerability remediation efforts

Experience/Skills Required
  • Bachelor’s degree in Computer Science or related field of study

  • 2+ years experience in Incident Response capacity or within a Incident Response Team (where the main responsibility included responding to incidents involving security risks, vulnerabilities, and breaches)

  • Experience with Python, Powershell, Bash, and SQL

  • Experience using Splunk, QRadar, or other SIEM tools are huge assets

  • Professional certifications such as CEH, GIAC, GCIH, GWAPT, GPEN, OSCP, or OSCE are highly regarded

What makes our staff passionate about Geotab?
  • Table Tennis at the office - bring your own bat!

  • Great accommodation (brand new office building, height-adjustable desks)

  • Light breakfast served daily

  • Hot lunches or fresh sandwiches served every Friday

  • Geotab-sponsored sports teams and social events

  • Full medical benefits and 4% company matching RSP (full-time employees only)

Our Core Values
Geotab is shaping the future of telematics. Using leading technology, we embrace change and challenge the status quo. To stay ahead of the curve, we keep Geotabbers energized with data bootcamps, course subsidies, Friday lunches, and more. We believe collaboration leads to innovation; our teams stretch across floors, cities and continents. All employees, from the CEO to the summer students, maintain an open-door policy. Whether we’re fine-tuning our products, or boosting our office culture, we’re building a foundation for long-term success. To us, this means safer roads, more efficient fleets and a team of dynamic Geotabbers!
Geotab encourages applications from all qualified candidates. Geotab is committed to accommodating persons with disabilities throughout the interview, selection and employment process. If you require accommodation at any stage of the application process or want more information about our accommodation policies and practices, please contact us at (416) - 434 4309.

See what's happening @InsideGeotab