Security Engineer – Incident Response
Company | Meta |
---|---|
Location | Washington, DC, USA, Austin, TX, USA, Menlo Park, CA, USA, New York, NY, USA, Bellevue, WA, USA |
Salary | $177000 – $251000 |
Type | Full-Time |
Degrees | Bachelor’s, Master’s |
Experience Level | Senior, Expert or higher |
Requirements
- Bachelor of Science or Master of Science in Computer Science or related field, or equivalent experience
- 8+ years of work experience in Security Incident Response and Detection and Response Engineering in a large, regulated organization
- In-depth subject-matter knowledge in technical and process regarding Security Operations and Incident Response services
- Experience developing and delivering information on incident and program status for leadership
- Experience leading and managing complex cross-functional programs
- Experience responding to both external and insider threats
- Experience analyzing network and host-based security events
- Knowledge of networking technologies, specifically Transmission Control Protocol (TCP)/Internet Protocol (IP) and the related protocols
- Knowledge of operating systems, file systems, and memory structures on Windows, macOS and Linux
- Coding/scripting experience in one or more general purpose languages
- Experience with attacker tactics, techniques, and procedures
Responsibilities
- Conduct security investigations and lead security incident response in a cross-functional environment and drive incident resolution
- Develop Incident Response initiatives that improve our functionalities to effectively respond and remediate security incidents
- Refine operational metrics, key performance indicators, and service level objectives to measure Security Operations and Incident Response services
- Influence and align the team’s mission and strategy. Collaboratively prioritize and deliver specific multi-year roadmaps and projects
- Build, cultivate, and maintain successful relationships with internal customers to identify and facilitate solutions to increase the impact of the team’s work
- Partner with cross-functional teams to solve challenges related to a broad spectrum of detection and response initiatives
- Collaborate with software and production engineering teams to develop scalable and adaptable Incident Response and Investigative solutions
- Focus on identifying areas of greatest impact for prioritizing, automating and scaling every aspect of our detection and response functionalities
- Coach, mentor, support and care for the team in a way that enables long-term career development, happiness and success at scale
Preferred Qualifications
- Background in malware analysis, digital forensics, intrusion detection, and/or threat intelligence
- Experience in threat hunting including leveraging intelligence data to proactively identify and iteratively investigate suspicious behavior across networks and systems
- Broad knowledge across the Security domain, as well as demonstrated experience in one (or more) areas such as Logs and events processing, Incident Management, Digital Forensics, Detection and/or response tool development
- Experience recruiting, building, and leading technical teams, including performance management