Security Analyst I

About The Position

Requirements

• Bachelor’s degree in Computer Science, Information Security, Information Systems, or a related technical field, or equivalent practical experience.
• Experience (which may include internships, coursework, or projects) working with security concepts such as incident response, vulnerability management, or security monitoring in technical environments.
• Foundational understanding of how web applications, APIs, operating systems, and data stores are designed and secured, including basic system design (LLD), API design, and data modeling concepts.
• Hands-on exposure to security or infrastructure tools such as SIEM, endpoint protection, IDS/IPS, cloud security controls, or log analysis platforms.
• Familiarity with AI-driven systems, tools, or workflows and applying AI/ML concepts to real world products within security or technology operations.

Nice To Haves

• Experience assisting with end‑to‑end incident handling activities, including detection, investigation, documentation, and support for remediation in collaboration with engineering or operations teams.
• Practical experience analyzing security logs and telemetry at scale (for example, across multiple services or environments) to distinguish normal from suspicious behavior and to prioritize true risks.
• Exposure to securing or reviewing low-level system and API designs, including understanding common authentication/authorization patterns, data flows, and basic threat modeling for services.
• Demonstrated use of data and metrics (such as incident trends, false positive rates, or vulnerability closure timelines) to inform recommendations that improve security operations or engineering practices.
• Experience using or tuning AI/ML‑enabled security tools (such as automated threat detection, anomaly detection, or AI-assisted triage) and applying AI techniques to enhance incident response quality and speed.

Responsibilities

• Monitor, triage, and respond to security alerts and incidents across Expedia Group environments, escalating or containing threats in alignment with documented runbooks and playbooks.
• Analyze security event data, logs, and vulnerability findings to identify patterns, validate true positives, and recommend remediation actions that reduce risk to services and data.
• Execute defined security operations processes such as access reviews, endpoint protection checks, and vulnerability follow-up to improve the overall security posture.
• Collaborate with cross-functional technical teams to document security issues, track remediation progress, and communicate clear, concise incident summaries and status updates.
• Apply foundational knowledge of system design, APIs, and data models to understand how applications and services should behave, and to detect or investigate anomalous behavior.
• Safely integrate and operate AI/ML‑enabled solutions that improve outcomes, including familiarity with AI-driven systems, tools, or workflows and applying AI/ML concepts to real world products.

Benefits

• full benefits package, including exciting travel perks, generous time-off, parental leave, a flexible work model (with some pretty cool offices), and career development resources
• medical/dental/vision
• paid time off
• Employee Assistance Program
• wellness & travel reimbursement
• travel discounts
• International Airlines Travel Agent ( IATAN ) membership