This job has expired, please see additional jobs below
Senior Security Engineer - Detection & Response
Twitter
San Francisco, CA, United States
Job Details - this job has expired, please see similar jobs below
The Information Security Team partners with teams across the organization, supporting their ability to make strategic decisions informed by expert security analysis. We are a team of builders, breakers, and hunters. Our Security Engineers build tools and platforms to protect our users and secure the company.
The Detection & Response team focuses on identifying and responding to security incidents targeting Twitter. This team performs both investigation into suspicious activity and also plays a large role in the engineering and maintenance of security monitoring systems.
Responsibilities
• Advance network and application visibility, logging and detection capabilities
• Design and engineer response tools to automate incident handling and streamline security event processing
• Define security metrics to reveal trends and patterns of security incidents across Twitter
• Monitor and define events for our Security Incident Event Management (SIEM) tool.
• Work with the broader Information Security team to develop and mature our incident response processes and procedures
• Work closely with our Security Engineers to identify suspicious patterns, develop signals, and investigate alerts.
• Partner with engineering teams across Twitter to promote security enhancements for the benefit of intrusion detection and prevention
• Team with our Risk Management group to develop a real-time risk monitoring process.
Highly Desired Qualifications
• M.S. Computer Science, Data Science, Intelligence, or Security Studies Credentials: GIAC, CISSP, or CFE Criminal investigative experience: FBI or Secret Service cybersquad or equivalent Civil investigative experience: fraud audits & investigations, due diligence
• Senior experience within a Security Operations Center or equivalent experience performing computer security incident detection & response activities
• Experience with Security Information and Event Management tools
• Programming/scripting skills in at least one of following: Python, Ruby, Go
• Ability to effectively identify, analyze, and malware
• Working knowledge of infrastructure security tools such as firewalls, network security monitoring (NSM), anti-malware, content management, OS hardening, etc.
• Knowledge of common application/system vulnerabilities, threat actors and mitigations
• Knowledge of both technical and operational network security fundamentals
• Understanding of TCP/IP and common protocols (HTTPS, SSH, FTP, etc)
• Familiarity with OS X, Linux, and Windows systems
• Excellent oral, written and documentation skills
• Flexibility to participate in on-call rotation
We are committed to an inclusive and diverse Twitter. Twitter is an equal opportunity employer. We do not discriminate based on race, ethnicity, color, ancestry, national origin, religion, sex, sexual orientation, gender identity, age, disability, veteran status, genetic information, marital status or any other legally protected status.
San Francisco applicants: Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.