Security Engineer, Level 5, Detection & Response

About The Position

Requirements

• Proven experience in one or more of the following detection and response areas: digital forensics, malware analysis, incident management, host/network intrusion detection, threat intelligence
• Proficiency in, or a strong aptitude for, leveraging AI tools to streamline development, paired with the critical judgment to audit generated output for architectural integrity, performance bottlenecks, and security risks.
• Adaptability in learning and applying evolving AI systems and tools to remain at the forefront of engineering trends and modern development practices.
• Strong development skills in Python and/or Go
• Advanced knowledge of operating system internals, and a core competency in two or more of the following: macOS, Windows, Linux, Kubernetes, Amazon Web Services, and Google Cloud Platform
• Bachelor of Science in Computer Science, Engineering, Information Systems, or equivalent years of experience in a related technical field
• 6+ years of post-Bachelor’s security related experience; or Master’s degree in a technical field + 5+ year of post-grad security related experience; or PhD in a relevant technical field + 2+ years of post-grad security related experience

Nice To Haves

• Demonstrated knowledge in threat hunting and developing logic to automate threat detection and incident response
• Familiarity with cloud-based services and infrastructure (Google Cloud, Workspace, AWS, etc.)
• Excellent verbal and written communication skills, with high attention to detail
• Practical experience in a BeyondCorp model
• Work record of collaborating with internal and external stakeholders at all levels of a company

Responsibilities

• Design, pilot, and implement logging and alerting systems to detect malicious activity on Snap Inc.'s endpoints, infrastructure, networks, and cloud environments
• Build tools and devise automation strategies to improve Snap Inc.’s ability to hunt threats and respond to intrusions
• Investigate events generated by the alerting pipeline and triage potential incidents
• Utilize AI tools and high velocity engineering workflows to design and ship scalable services while upholding rigorous standards for code correctness, security, and production ready quality code.
• Work closely with multiple Snap Inc. teams during incidents and drive response efforts
• Identify, analyze, fingerprint and build threat intelligence on trends and developments in adversary tactics, techniques, and procedures (TTPs) for sophisticated threat actors spanning APTs and cybercrime.

Benefits

• paid parental leave
• comprehensive medical coverage
• emotional and mental health support programs
• compensation packages that let you share in Snap’s long-term success