Senior Security Engineer – Detection and Response

This is a fully remote position, open to applicants in United States.

📋 Description

• Develop and enhance a detection and response program.

• Identify and react to security incidents while participating in an incident on-call rotation.

• Innovate new techniques for detecting security incidents.

• Architect and establish security measures for the future of our infrastructure.

• Collaborate with the infrastructure, engineering, and compliance teams, as well as other security teams, to uphold and advance our cloud security posture.

• Formulate solutions and processes to identify, address, and mitigate security vulnerabilities and risks.

• Investigate threats and attack vectors that affect WW applications and infrastructure.

• Enhance defense-in-depth strategies through secure-by-default frameworks, architectures, and processes.

• Mentor and communicate security standards and procedures across the organization.

⛳️ Requirements

• Proficiency in responding to intricate incidents across endpoints, networks, and cloud environments.

• Ability to comprehend an unfamiliar system adequately to effectively respond to incidents regarding that system.

• Specialized knowledge in detection engineering.

• Familiarity with SIEM, EDR, and CSPM tools.

• In-depth understanding of the threat landscape.

• Experience in risk assessment.

• Background in cloud security, particularly with AWS, including aspects related to IAM, secure service configurations, and AWS native security services such as AWS CloudTrail, SCPs, AWS Organizations, Config, etc.

• Capacity to grasp the entirety of the solution, extending beyond just the technology.

• Emphasis on the complete lifecycle of problem-solving and solution development, rather than merely implementing security technology. A holistic perspective on problem-solving is essential.

• Genuine concern for the experiences of patients and fellow employees while overcoming security challenges.

• Drive to influence decision-making, foster collaboration, and share deeper insights on security design.

• Ability to evaluate various design choices and articulate the advantages and disadvantages of each.

• Proficiency in coding to automate repetitive tasks.

• Experience with Infrastructure as Code; we utilize Terraform!

• Strong collaborative abilities with the broader security team and engineering at WW.

🏝️ Benefits

• Comprehensive benefits package.

• Annual bonus program.