The Digital Security and Risk Engineering (DSRE) team is looking for a Security Engineer to be a part of the Security Operations Center. In this role you will have the opportunity to work on cybersecurity issues as part of a dynamic and high-impact team. We use advanced security technologies, extensive automation and procedures to protect, detect and respond to cybersecurity issues in real-time. In addition to day to day responsibilities, you will inform security initiatives across the company. You will analyze threats and escalations from multiple sources, both internal and external. You will triage a wide variety of security events, conduct detailed and comprehensive investigation and drive issues to closure. You will also contribute to developing innovative solutions for detection and event handling. As part of the job, you will collaborate with security partners and threat intelligence teams to derive indications and warnings of impending threat and you will participate in purple team
Detect and respond to advanced threats, actor techniques, anomalous or suspicious activity, combined with intelligence, to identify potential and active risks to systems and data Conduct detailed comprehensive triage and investigation on a wide variety of security events and implement containment and mitigation processes Collaborate with internal security partners and threat intelligence teams to derive indications and warnings of impending threat Build, deploy, tune scalable systems that automate security event detection, response and repeatable tasks through technical solutions and new security
Knowledge, experience and skills required: Bachelor's degree in Computer Science or Engineering, or a related field, or equivalent alternative education, skills, and/or practical experience 3+ years of hands-on experience in security operations, threat detection and analysis, and/or incident response 2+ years of professional software development life-cycle experience in one of the following - C#, JavaScript or Python Preferred, not required: Experience in analyzing a wide variety of network and host security logs to detect and resolve security issues Understanding of common threat analysis model's