Security Operations Engineer

About The Position

Requirements

• Empathetic contributor who has experience operating effectively across teams and disciplines in highly ambiguous and rapidly changing environments and have successfully executed on ambitious projects
• Proficient experience working in cybersecurity operations and incident response, to include utilizing Security Information and Event Management (SIEM) platforms, Intrusion Detection/Prevention Systems (IDS/IPS), and Vulnerability Management and Threat Intelligence applications.
• Experience working with large, complex networks and systems
• Proficient understanding and applicability of MITRE ATT&CK framework (or other industry related frameworks)
• Programming/scripting experience (bash, python, PowerShell)
• Knowledge of log ingestion pipelines, log parsing, grok patterns and regular expressions
• Capable of writing detections using YAML and JSON styled languages
• Ability to write and automate security incident playbooks
• Excellent communication skills both verbal and written to help articulate and lead Incident response processes; ability to write about technical subjects to a wide audience for reporting on security incidents in regulated industries
• At least one of the following certifications with combined experience: CISSP, CEH, GCIH, GCFA, Security+, OSCP
• Security experience with cloud native company expanding across multiple environments from, nix/Windows operating systems, cloud resources (e.g. AWS, GCP, O365), and customer-facing web applications
• Deep knowledge of attacker methodologies and techniques and corresponding incident response methodologies to detect and protect.

Nice To Haves

• Bachelor of Science degree in Information Security, Engineering, Computer Science or related field preferred
• Bachelor of Science degree in Information Security, Engineering, Computer Science or related field preferred

Responsibilities

• Monitor and analyze network, server, endpoint, database, and application activities for indicators of compromise, minimizing false positives.
• Automate alert collection, prioritization, tasks and processes, periodic audits, and controls.
• Lead incident response efforts, conducting thorough remediation and root cause analysis.
• Enhance security posture for large-scale customer-facing hybrid cloud environment and internal workplace, leveraging MITRE ATT&CK tactics and techniques assessment.
• Drive growth and maturity of threat hunting program to proactively identify and mitigate security threats.
• Contribute to security process enhancement and documentation, staying abreast of cybersecurity developments to brief SOC director effectively.
• Evaluate and conduct proof-of-concepts for innovative technologies, collaborating with security engineers on implementation.
• Foster cross-departmental integration to establish strong business relationships, mentor business units in cybersecurity guidelines and best practices while promoting knowledge sharing and maintaining high customer service levels.

Benefits

• We offer amazing benefits above and beyond the basics.
• We have an array of health plans to choose from (some as low as $0 per paycheck) that include programs for fertility and family planning, mental health support, and fitness benefits.
• We offer generous paid time off (PTO & sick leave), annual bonus and long-term incentive opportunities (based on performance), 401k with up to a 5% match, commuter benefits , pet insurance, and more - check out all our benefits here: FanDuel Total Rewards .
• Benefits differ across location, role, and level.
• This role may offer the following benefits: medical, vision, and dental insurance; life insurance; disability insurance; a 401(k) matching program; among other employee benefits.
• This role may also be eligible for short-term or long-term incentive compensation, including, but not limited to, cash bonuses and stock program participation.
• This role includes paid personal time off and 14 paid company holidays.
• FanDuel offers paid sick time in accordance with all applicable state and federal laws.