Senior Cybersecurity Engineer, Threat Detection and Response

This is a fully remote position, open to applicants in Washington.

📋 Description

• Identify, assess, and appropriately respond to alerts and incidents.

• Develop detections utilizing the MITRE ATT&CK Framework.

• Proactively recognize emerging threats and perform threat hunting for undetected activities within the environment.

• Evaluate alerts to determine their legitimacy and urgency.

• Follow SOC playbooks and standard operating procedures (SOPs) to ensure consistency in triage and decision-making.

• Conduct a comprehensive review and audit of existing logging systems to spot any gaps in detection capabilities.

• Analyze threat intelligence reports and feeds, providing recommendations for profile or toolset modifications based on findings.

• Carry out in-depth investigations on Windows, Linux, and MacOS hosts.

• Create narratives to enhance the SOAR environment for engineers.

• Improve SOC processes by incorporating feedback and operational insights.

• Act as both a mentor and an escalation point for SOC engineers.

• Adjust security tool configurations to reduce false positives.

• Collaborate closely with security leaders, engineers, and compliance teams to execute effective security plans.

• Function as a subject matter expert on security tools, applications, and processes.

⛳️ Requirements

• Over 5 years of experience in an information technology discipline.

• More than 4 years of experience in security operations.

• At least 2 years of experience in detection engineering.

• A minimum of 2 years of threat hunting experience.

• Strong technical knowledge of modern Cybersecurity threats.

• Familiarity with the MITRE ATT&CK framework and the capability to create detections based on attacker tools and techniques analysis using this framework.

• Proficient in at least one modern programming language such as Python, Powershell, C#, Ruby, or Java.

• Experience with technologies including SIEMs, WAFs, IDS/IPS, EPP, EDR, FIM, DLP, Cloud Security, and Container Security.

• Basic understanding of compliance and regulatory requirements like SOX and PCI.

• Ability to manage multiple priorities and meet deadlines.

• Exceptional problem-solving skills.

• A strong passion for cybersecurity and a self-driven approach to becoming an expert.

🏝️ Benefits

• Medical, dental, and vision insurance, along with basic and supplemental life insurance, and other voluntary insurance options.

• Short-term and long-term disability coverage.

• Paid parental leave.

• Family expansion reimbursement.

• Paid vacation from the date of hire.*

• Sick time accrued at a rate of 1 hour for every 25 hours worked.

• Eight paid holidays annually.

• Two personal days each year.

• Participation in a 401(k) retirement plan with employer matching contributions.

• Discounted company stock program (S.I.P.).

• Starbucks equity program (Bean Stock).

• Incentivized emergency savings options.

• Financial well-being tools available.

• 100% upfront tuition coverage for a first-time bachelor’s degree through Arizona State University’s online program via the Starbucks College Achievement Plan.

• Resources for student loan management.

• Access to various educational opportunities.

• Backup care and DACA reimbursement available.