About Ramp

Ramp is building the smart infrastructure for finance teams, embedded in the transaction flow of every dollar a business spends. We automate how over $100B in annualized spend flows in and out of 50,000+ companies: authorizing payments, flagging risk, categorizing spend, and closing books.

The problems are high-stakes, data-dense, and unforgiving.

We hire people with high agency and high urgency. We look for slope over intercept. We care less about where you trained and more about what you’ve built. At Ramp, everyone is a builder who owns problems end to end and makes consequential decisions that shape the outcome.

The median Ramp customer saves 5% and grows revenue 16% in their first year – far in excess of businesses operating without Ramp. We believe every ambitious company deserves the same.

If you want to build systems that directly shape how companies move and manage billions, Ramp is the place to do it.

About the Role

Join our growing security team and help drive security detection and response initiatives across Ramp. This will include a focus on maturing our security detection and alerting capabilities across our federal and public sector environments.

Please note that this role will require you to be comfortable with working in-person at our NYC HQ (located near Madison Square Park) at least 2 days/week

What You’ll Do

Respond and assist with security requests and incidents submitted by Ramp team members
Review logging, alerting, and audit sources to identify potential security incidents and perform initial triage on identified incidents
Contribute to the creation, upkeep, and tuning of runbooks and security alerts to effectively handle, triage, and improve security alerts
Work closely with the Ramp Security Engineers to improve security alerting and automated remediation
Utilize log ingestion platform for security analytics and identification of tactics, techniques and patterns of attackers
Design and implement automation to detect and respond to threats

What You Need

3-4 years of information technology experience or the equivalent combination of education, technical training, or work experience.
Working experience in information security, especially on a Computer/Security Incident Response Team (C/SIRT), Computer Emergency Response Team (CERT), Computer Security Incident Response Center (CSIRC) or a Security Operations Center (SOC)
Experience with query-based log management solutions (ELK, Datadog, Panther, etc)
Strong deductive reasoning and critical thinking skills
Ability to communicate complex security issues to peers and management in a clear and effective manner.
Strong written communication skills and the ability to succinctly document technical details

Nice to Haves

Prior experience working with government entities or in a highly regulated environment
Security Certifications such as CompTIA Security+, Network+, etc.
Experience with workflow automation tooling (Tines, Swimlane, etc.)

Benefits available to all full-time Ramp employees (Global)

• Flexible PTO

• Unlimited AI token usage

• Centralized home-office equipment ordering

• Health and wellness stipend

• Budget for intra-office travel

• Weekly coffee stipend

United States

• 100% medical, dental & vision insurance coverage for you, with partial coverage for dependents

• One Medical annual membership

• 401(k), including employer match on contributions made while employed by Ramp

• Fertility HRA (up to $10,000 per year)

• Parental leave: up to 16 weeks (80 days) at 100% pay

• Pet insurance

• In-office perks: lunch, snacks, drinks, and more

• Relocation support to NYC or SF (as needed)

Canada

• Group medical, dental, and vision coverage through Sun Life

• Life, AD&D, and disability coverage

• Fertility drug coverage (up to $4,000 lifetime)

• Group Retirement Plan with employer match (RRSP + DPSP)

• Parental leave: up to 16 weeks (80 days) at 100% pay, with additional time available at reduced pay

• Employee Assistance Program and virtual care through Lumino Health

United Kingdom

• Private medical insurance through Freedom Elite

• Virtual GP and at-home care via eMed x Livi

• Workplace pension through Penfold, with salary sacrifice option

• Parental leave: up to 16 weeks (80 days) at 100% pay, with additional time available at reduced pay

Referral Instructions

If you are being referred for the role, please contact that person to apply on your behalf.

Other notices

Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.

Beware of recruiting scams: Ramp will only contact you through official @_Ramp.com__ email addresses and will never ask for payment or sensitive personal information during the hiring process._

Ramp Applicant Privacy Notice

About Ramp

The problems are high-stakes, data-dense, and unforgiving.

The median Ramp customer saves 5% and grows revenue 16% in their first year – far in excess of businesses operating without Ramp. We believe every ambitious company deserves the same.

If you want to build systems that directly shape how companies move and manage billions, Ramp is the place to do it.

About the Role

Please note that this role will require you to be comfortable with working in-person at our NYC HQ (located near Madison Square Park) at least 2 days/week

What You’ll Do

Respond and assist with security requests and incidents submitted by Ramp team members
Review logging, alerting, and audit sources to identify potential security incidents and perform initial triage on identified incidents
Contribute to the creation, upkeep, and tuning of runbooks and security alerts to effectively handle, triage, and improve security alerts
Work closely with the Ramp Security Engineers to improve security alerting and automated remediation
Utilize log ingestion platform for security analytics and identification of tactics, techniques and patterns of attackers
Design and implement automation to detect and respond to threats

What You Need

3-4 years of information technology experience or the equivalent combination of education, technical training, or work experience.
Working experience in information security, especially on a Computer/Security Incident Response Team (C/SIRT), Computer Emergency Response Team (CERT), Computer Security Incident Response Center (CSIRC) or a Security Operations Center (SOC)
Experience with query-based log management solutions (ELK, Datadog, Panther, etc)
Strong deductive reasoning and critical thinking skills
Ability to communicate complex security issues to peers and management in a clear and effective manner.
Strong written communication skills and the ability to succinctly document technical details

Nice to Haves

Prior experience working with government entities or in a highly regulated environment
Security Certifications such as CompTIA Security+, Network+, etc.
Experience with workflow automation tooling (Tines, Swimlane, etc.)

Benefits available to all full-time Ramp employees (Global)

• Flexible PTO

• Unlimited AI token usage

• Centralized home-office equipment ordering

• Health and wellness stipend

• Budget for intra-office travel

• Weekly coffee stipend

United States

• 100% medical, dental & vision insurance coverage for you, with partial coverage for dependents

• One Medical annual membership

• 401(k), including employer match on contributions made while employed by Ramp

• Fertility HRA (up to $10,000 per year)

• Parental leave: up to 16 weeks (80 days) at 100% pay

• Pet insurance

• In-office perks: lunch, snacks, drinks, and more

• Relocation support to NYC or SF (as needed)

Canada

• Group medical, dental, and vision coverage through Sun Life

• Life, AD&D, and disability coverage

• Fertility drug coverage (up to $4,000 lifetime)

• Group Retirement Plan with employer match (RRSP + DPSP)

• Parental leave: up to 16 weeks (80 days) at 100% pay, with additional time available at reduced pay

• Employee Assistance Program and virtual care through Lumino Health

United Kingdom

• Private medical insurance through Freedom Elite

• Virtual GP and at-home care via eMed x Livi

• Workplace pension through Penfold, with salary sacrifice option

• Parental leave: up to 16 weeks (80 days) at 100% pay, with additional time available at reduced pay

Referral Instructions

If you are being referred for the role, please contact that person to apply on your behalf.

Other notices

Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.

Beware of recruiting scams: Ramp will only contact you through official @_Ramp.com__ email addresses and will never ask for payment or sensitive personal information during the hiring process._

Ramp Applicant Privacy Notice

Detection & Response, Lead

What you'd actually do

Skills

Required

Nice to have

What the JD emphasized

About Ramp

About the Role

Benefits available to all full-time Ramp employees (Global)

United States

Canada

United Kingdom

Referral Instructions

Other notices

About Ramp

About the Role

Benefits available to all full-time Ramp employees (Global)

United States

Canada

United Kingdom

Referral Instructions

Other notices