Blue Team DART Staff Security Analyst
About The Position
We exist to wow our customers. We know we're doing the right thing when we hear our customers say, “How did we ever live without Coupang?” Born out of an obsession to make shopping, eating, and living easier than ever, we're collectively disrupting the multi-billion-dollar e-commerce industry from the ground up. We are one of the fastest-growing e-commerce companies that established an unparalleled reputation for being a dominant and reliable force in South Korean commerce. We are proud to have the best of both worlds — a startup culture with the resources of a large global public company. This fuels us to continue our growth and launch new services at the speed we have been since our inception. We are all entrepreneurs surrounded by opportunities to drive new initiatives and innovations. At our core, we are bold and ambitious people that like to get our hands dirty and make a hands-on impact. At Coupang, you will see yourself, your colleagues, your team, and the company grow every day. Our mission to build the future of commerce is real. We push the boundaries of what's possible to solve problems and break traditional tradeoffs. Join Coupang now to create an epic experience in this always-on, high-tech, and hyper-connected world. Role Overview As our Cyber Security Incident Response Team (CSIRT) for our Seattle office, you will be a part of our special forces within the BlueTeam. You must have a calm and collected mannerism in high-pressure and time sensitive situations, think like both an attacker and defender, and work with relevant teams to take the right and timely actions to analyze, respond and neutralize attacks. The BlueTeam is responsible for the detection and response to credible threats. We work hands-on developing detective capabilities, identifying mitigations to vulnerabilities and respond to potential threats to Coupang systems. BlueTeam CSIRT Engineers are unique individuals prepared to relentlessly resolve security issues by gathering and analyzing event data and conducting root-cause analysis. The Senior Security Engineer position requires an experienced CSIRT personnel that have expert working knowledge in IR, investigation and hunt techniques, root-cause security flaws and vulnerabilities, quickly assessing the potential cyber threats. Security Engineers are also expected to develop elegant solutions to complex problems and apply appropriate technologies while following security engineering best practices.
Requirements
- Bachelors Degree in Computer Science or a related technical field or equivalent professional experience.
- 4 years of experience in information Security with experience in Cyber Security Incident Analysis
Nice To Haves
- 12+ years of experience in information security with at least 8+ years as a Cyber Security Incident Analyst
- Experience of Host based security investigation (Windows, Linux, Network/Security appliances)
- Experience of analyzing security event and knowledge of AWS or Cloud environment
- Experience of analyzing security event from Web security solutions (Akamai, CloudFlare)
- Experience of analyzing security event from network security and SaaS solutions (IPS/IDS, Network Monitoring solutions, Email Security, O365, etc)
- Experience of analyzing security event from endpoint security solutions (EDR, HIPS, Anti-Virus, DLP, etc)
- Experience and skills querying SIEM Solutions for analyzing security events from the logs
- Skill to analyze big data or big size logs
- Experience in Automation and Scripting using Bash, Python, PowerShell
- Proactive and proactive work attitude
Responsibilities
- Analyze and respond to security anomalies, intrusion attempts, and breaches, and root cause analysis, containment, creating the report
- Threat hunting to find undetected security threat from the SOC using data from end points, servers, clouds, network and other sources
- Ticket review, and security analysis escalated from SOC
- Improvement of incident response policies and procedures, and process of SOC.
- Analyze and respond to Web security events by CDN security solutions (e.g. Akamai, CloudFlare)
- Analyze and respond to Email Security events
- Oncall to response urgent security events or security issues
- Collaborate effectively with internal teams through efficient communication
Benefits
- Medical/Dental/Vision/Life, AD&D insurance
- Flexible Spending Accounts (FSA) & Health Savings Account (HSA)
- Long-term/Short-term Disability
- Employee Assistance Program (EAP) program
- 401K Plan with Company Match
- 18-21 days of the Paid Time Off (PTO) a year based on the tenure
- 12 Paid Holidays
- Paid Parental leave
- Pre-tax commuter benefits
- MTV - [Free] Electric Car Charging Station
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Number of Employees
5,001-10,000 employees
