Security Incident Manager

We are looking for a Security Incident Manager with experience managing incidents and maturing incident response across the company. You will be working with a world-class team of engineers building out incident response capabilities and making it a core part of our company culture. We are looking for an extremely customer obsessed individual that wants to deliver the best possible experience for our customers. 

This role will report into the Security Engineering group that is responsible for the security of Asana the company and the security of the product to make sure we maintain customer trust and are able to grow sustainably. You will collaborate with teams across the company including Infrastructure, Customer Success, Legal, IT, Marketing, company leadership, and other key stakeholders to drive better incident response outcomes for our company and our product.

This role can either be fully remote depending on which US state you live in, or based in our New York City office with an office-centric hybrid schedule. If based in-office: The standard in-office days are Monday, Tuesday, and Thursday. Most Asanas have the option to work from home on Wednesdays. Working from home on Fridays depends on the type of work you do and the teams with which you partner. If you're interviewing for this role, your recruiter will share more about the in-office requirements.

As the Security Incident Manager in our Security Engineering Group, you'll serve as both a hands-on incident commander and a technical leader, guiding a team of engineers to make sure we are effectively and promptly responding to incidents to maintain our confidentiality, integrity, and availability. While this role focuses on incident leadership rather than people management, you'll be instrumental in decision-making, project execution, and mentoring team members.

What you'll achieve:

• Lead initiatives and OKRs related to incident response improvements for Infrastructure, Security, and Privacy. 
• Drive incident management and incident response best practices across the company.
• Mentor team members through pairing, defining processes, and training exercises.
• You will actively participate in and lead the on-call rotation, setting examples for security incident management.
• You will lead retrospectives to help raise the engineering excellence and continuous improvement culture at the company. 
• Lead tabletop exercise to ensure different stakeholders are thinking about and preparing for incidents across the company.

About you:

• 10+ years of experience in incident management and security
• Hands on experience building training and processes to develop engineers into incident responders
• Experience working in environments composed of mainly SaaS and Cloud resources
• Hands-on technical expertise in at least two of the following areas:
• Abuse
• Cloud Security
• Detection & Response
• Digital Forensics
• Fraud
• Network Security
• Track record of successfully leading projects and mentoring engineers on incident response
• Experience in making technical trade-offs and articulating them to stakeholders
• Strong communication skills with ability to explain complex technical concepts clearly
• Experience communicating at different levels and to both people internal and external to the company
• Demonstrates curiosity about AI tools and emerging technologies, with a willingness to learn and leverage them to enhance productivity, collaboration, or decision-making.

Additional experience we value:

• Hands on experience with logging and monitoring tools such as DataDog, Splunk, and Panther
• Hands on experience with AWS, Google Workspace, and common SaaS applications
• Experience with Bug bounty programs
• Red Team/Blue Team exercises

What we'll offer:

Our comprehensive compensation package plays a big part in how we recognize you for the impact you have on our path to achieving our mission. We believe that compensation should be reflective of the value you create relative to the market value of your role. To ensure pay is fair and not impacted by biases, we're committed to looking at market value which is why we check ourselves and conduct a yearly pay equity audit. 

For this role, the estimated base salary range is between $150,000 - $246,000. The actual base salary will vary based on various factors, including market and individual qualifications objectively assessed during the interview process. The listed range above is a guideline, and the base salary range for this role may be modified.

In addition to base salary, your compensation package may include additional components such as equity, sales incentive pay (for most sales roles), and benefits. If you're interviewing for this role, speak with your Talent Acquisition Partner to learn more about the total compensation and benefits for this role.

We strive to provide equitable and competitive benefits packages that support our employees worldwide and include:

• Mental health, wellness & fitness benefits
• Career coaching & support
• Inclusive family building benefits
• Long-term savings or retirement plans
• In-office culinary options to cater to your dietary preferences

These are just some of the benefits we offer, and benefits may vary based on role, country, and local regulations. If you're interviewing for this role, speak with your Talent Acquisition Partner to learn more about the total compensation and benefits for this role.

About us

Asana helps teams orchestrate their work, from small projects to strategic initiatives. Millions of teams around the world rely on Asana to achieve their most important goals, faster. Asana has been named a Top 10 Best Workplace for 5 years in a row, is Fortune's #1 Best Workplace in the Bay Area, and one of Glassdoor’s and Inc.’s Best Places to Work. After spending more than a year physically distanced, Team Asana is safely and mindfully returning to in-person collaboration, incorporating flexibility that adds hybrid elements to our office-centric culture. With 11+ offices all over the world, we are always looking for individuals who care about building technology that drives positive change in the world.

We believe in supporting people to do their best work and thrive. Our goal is to ensure that Asana upholds an environment where all people feel that they are respected and valued, whether they are applying for an open position or working at the company. We provide equal employment opportunities to all applicants without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by law. We also comply with the San Francisco Fair Chance Ordinance and similar laws in other locations.

#LI-Hybrid #LI-AS2