Easy Apply
Easy Apply
Lead incident response lifecycle across multi-cloud infrastructure: triage, containment, evidence capture, remediation, and post-incident analysis. Build SOAR automations with Tines, tune detections in CrowdStrike and SIEM, monitor data risks with Cyberhaven DLP, partner on secure architecture, evaluate emergent threats, and participate in on-call rotation.
At Navan, you will serve as the technical lead for our incident response lifecycle, driving the containment and remediation of security threats across our multi-cloud infrastructure, products, and operational environments. You will balance hands-on technical investigations with the leadership required to coordinate response efforts, leveraging a modern security stack to protect our global travel and expense platform.
What You’ll Do:
- Incident Response Leadership: Act as the primary Incident Lead during high-severity events. Own the end-to-end response lifecycle: driving triage, containment, evidence capture, and post-incident root-cause analysis.
- Automation & SOAR Engineering: Use Tines to build and design workflows that automate triage, enrichment, and containment actions, significantly reducing operational toil and improving time-to-contain.
- Detection & Endpoint Monitoring: Manage and fine-tune detection rule lifecycles utilizing CrowdStrike EDR and SIEM/SOAR capabilities to maintain high-precision, low-latency coverage against modern adversary tradecraft.
- Data Protection & Visibility: Monitor and respond to data risks across endpoints, identity, and SaaS applications using Cyberhaven DLP. Identify gaps in IAM and vulnerability management and advocate for direct fixes.
- Architecture Partnership: Partner with infrastructure owners to ensure new systems ship across all cloud environments with the right telemetry, encryption, authentication, and response playbooks from day one.
- Emergent Threats: Evaluate and design response strategies for frontier security concerns, such as automated agents or bots operating across infrastructure at scale.
- On-Call Rotation: Actively participate in the scheduled Incident Response on-call rotation, ensuring reliable coverage and operational readiness for emergent threats.
What We’re Looking For:
- 5+ years of experience in a dedicated Incident Response, SOC, or Security Engineering role, with a proven track record of leading high-severity incident containment in fast-paced environments
- Strong familiarity with the MITRE ATT&CK framework, modern adversary tactics, techniques, and procedures (TTPs), and common attack vectors targeting SaaS platforms
- Proven experience managing and tuning detection logic within CrowdStrike Falcon (or equivalent enterprise EDR/XDR) and enterprise SIEM platforms.
- Excellent leadership skills with the ability to remain calm under pressure, coordinate cross-functional teams (Engineering, Legal, PR), and clearly communicate complex technical risks to stakeholders.
Navan Austin, Texas, USA Office
501 Congress, 5th floor, Austin, TX, United States, 78701
Similar Jobs at Navan
.png)
Fintech • Information Technology • Payments • Productivity • Software • Travel • Automation
Provide best-in-class travel support across chat, call, and email; manage hotel, flight, car and rail bookings; maintain supplier and system knowledge; resolve issues within SLA; advise on fares, ticketing, and compliance; provide feedback to product teams and meet performance metrics.
Top Skills:
AmadeusArcBspEmdGlobal Distribution System (Gds)McoNavan PlatformNdcPnrSabre
Fintech • Information Technology • Payments • Productivity • Software • Travel • Automation
Provide best-in-class travel support via chat, phone, and email; manage hotel/flight/car/rail bookings; use Sabre/Amadeus GDS for ticketing, reissues, cancellations, EMD/MCO issuance and PNR management; maintain supplier and compliance knowledge; meet SLA and performance metrics; support self-service and give feedback to product and operations teams.
Top Skills:
AmadeusArcBspEmdGdsMcoNavan PlatformNdcPnrSabre
Fintech • Information Technology • Payments • Productivity • Software • Travel • Automation
The role involves implementing Navan Expense solutions, partnering with teams to enhance client satisfaction, and training the Account Management organization to drive user engagement and revenue.
Top Skills:
Corporate Credit Card SolutionsErp SystemsExpense Management Software
What you need to know about the Austin Tech Scene
Austin has a diverse and thriving tech ecosystem thanks to home-grown companies like Dell and major campuses for IBM, AMD and Apple. The state’s flagship university, the University of Texas at Austin, is known for its engineering school, and the city is known for its annual South by Southwest tech and media conference. Austin’s tech scene spans many verticals, but it’s particularly known for hardware, including semiconductors, as well as AI, biotechnology and cloud computing. And its food and music scene, low taxes and favorable climate has made the city a destination for tech workers from across the country.
Key Facts About Austin Tech
- Number of Tech Workers: 180,500; 13.7% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Dell, IBM, AMD, Apple, Alphabet
- Key Industries: Artificial intelligence, hardware, cloud computing, software, healthtech
- Funding Landscape: $4.5 billion in VC funding in 2024 (Pitchbook)
- Notable Investors: Live Oak Ventures, Austin Ventures, Hinge Capital, Gigafund, KdT Ventures, Next Coast Ventures, Silverton Partners
- Research Centers and Universities: University of Texas, Southwestern University, Texas State University, Center for Complex Quantum Systems, Oden Institute for Computational Engineering and Sciences, Texas Advanced Computing Center
