Cybersecurity Incident Response Engineer

| About us:

Foodsmart is the leading telenutrition and foodcare solution, backed by a robust network of Registered Dietitians. Our platform is designed to foster healthier food choices, drive lasting behavior change, and deliver long-term health outcomes. Through our highly personalized, digital platform, we guide our 2.2 million members—including those in employer-sponsored health plans, regional and national Medicaid managed care organizations, Medicare Advantage plans, and commercial insurers—on a tailored journey to eating well while saving time and money.

Foodsmart seamlessly integrates dietary assessments and nutrition counseling with online food ordering and cost-effective meal planning for the entire family, optimizing ingredients both at home and on the go. We partner with national and regional retailers across the U.S., many of whom accept SNAP/EBT, making healthier food more accessible. Additionally, we assist members with SNAP enrollment and management, providing tangible access to nutritious food. In 2024, Foodsmart secured a $200 million investment from TPG’s Rise Fund, which supports entrepreneurs dedicated to achieving the United Nations’ Sustainable Development Goals. This investment will help us expand our reach, particularly to low-income workers who are disproportionately affected by diet-related diseases.

At Foodsmart, our mission is to make nutritious food accessible and affordable for everyone, regardless of economic status. We are committed to a set of core values that shape our culture and work environment:

⚖️ Measured: We make data-driven, truth-seeking decisions.

💥 Impactful: We are fueled by achieving our mission and vision.

🙏 Collaborative: We help each other be better and create a positive environment.

📈 Hungry: We maintain a healthy growth mindset, seeking to overcome challenges with courage.

😊 Joyful: We take joy in each other, our work, and the privilege of doing this work.

Whether you're a dietitian, a commercial leader, or a technologist, working at Foodsmart means being part of a team that is passionate, supportive, and driven by a shared purpose. Join us in transforming the way people access and enjoy healthy food.

| About the role:

We are seeking a Sr. Detection & Response Engineer to support and enhance our ability to monitor, detect, and respond to security threats across the organization. This role is focused on hands-on technical execution and will play a critical part in safeguarding Foodsmart’s systems, data, employees, and customers.

The ideal candidate will have strong foundational knowledge of Sr. Detection & Response Engineer, be comfortable working with modern security tools and platforms, and demonstrate a proactive approach to automation and process improvement. You will work alongside our security and engineering teams to ensure we maintain a robust and responsive security posture.

You will:

• Participate in the team’s on-call rotation to conduct real-time monitoring of security events across Foodsmart’s infrastructure using SIEM tools.
• Continuously improve threat detection capabilities by fine-tuning alerts, building correlation rules, and integrating new data sources into monitoring systems.
• Act as the first line of defense during active incidents, lead containment, eradication, recovery efforts, and conduct root cause analysis.
• Administer and configure security tools including EDR, SASE, DLP, and SIEM
• Conduct periodic risk assessments on infrastructure, SaaS applications, endpoints, and third party integrations to identify gaps in security posture.
• Implement vulnerability management processes to ensure timely remediation of identified risks.
• Develop playbooks for common attack scenarios to ensure rapid response during incidents.
• Automate repetitive tasks by writing scripts workflow automation (e.G., Python)
• Partner with DevOps teams to enhance CI/CD pipeline security and enforce secure configurations for infrastructure-as-code (IaC).
• Work closely with IT teams to secure endpoints for remote employees and enforce strong identity access management policies (e.G., SSO, MFA)
• Support compliance initiatives (e.G., ISO27001, HIPAA, HITRUST CSF)

You have:

• At least 5+ years of experience in information security, IT, and engineering roles with a proven track record of safeguarding critical systems in fast-paced environments.
• Hands-on experience with security tools including but not limited to SIEM platforms, SASE, Email Gateways, Browser Isolation, EDR/XDR solutions.
• Background as an incident response lead and detection engineer to support incident response function.
• Experience managing application and cloud security vulnerability and configuration management programs (e.G., CSPM, ASPM)
• Familiarity with scripting (e.G., Python) and no-code tools for workflow automation (e.G., Okta Workflows, Zapier).
• Knowledge of best practices in cloud based architecture (e.G., AWS, GCP)