Sr. Security Engineer

Sr. Security Engineer - Detection & Response

Location: Palo Alto, Seattle & NYC

Salary Range: $154,000 USD - $226,000 USD

_

Who We Are

X serves our community of users and customers by working tirelessly to preserve free expression and choice, create limitless interactivity, and create a marketplace that enables the economic success of all its participants.

What You'll Do

You will be responsible for maintaining day-to-day security threat management. You will investigate and handle security incidents, collaborate with partner teams on known or suspected security threats. You will support threat intelligence, threat hunting, intrusion detection, and incident response efforts that adhere to, and push forward, best practices.

As a Security Engineer, you will:

Drive processes and procedures to improve the quality and effectiveness of the team

Drive the remediation of security incidents and update stakeholders

Develop custom detections and optimize existing detections

Research and analyze patterns in security events across X’s global infrastructure

Identify, design, and lead threat hunting missions to quantify and reduce threats

Manage and support log collection, security scanning, intrusion detection, and other security-related systems

Develop automations to reduce false positives, handle events, and expedite incident response

Analyze the security posture of systems via testing and vulnerability impact analysis

Participate in a 24/7 on-call rotation performing security incident response

Who You Are

You are passionate about security and building a secure environment for the people using X everyday

You are quick to ask for help, and for clarification when you do not understand a task

You make time-critical decisions based on data and analysis

You have an investigative mindset and do not leave questions unanswered

You question all requirements

Requirements

B.S. in Computer Science, Cybersecurity, or a related technical discipline, or equivalent security experience

Knowledge of networking and macOS, Windows or Linux operating systems

Knowledge of cloud security fundamentals and practices (vendor agnostic)

Experience with EDR, vulnerability scanners, SIEMs, MDM, and other common security tools

Practical knowledge of SQL and Python, experience with other languages are a plus

Knowledge of current TTPs utilized by threat actors

Passion for malware analysis, forensics or penetration testing

R100146