Frontdoor, Inc.Remote
Sr. Incident Response Engineer (Remote)
United States of America
Full Time
2 weeks ago
$125,000 - $160,000 USD
Visa Sponsor
Key skills
Incident ResponseInformation SecurityCybersecurityIdentityAccess Management (IAM)Cloud Security - AWSCloud Security - GCPCloud Security - AzureLoggingMonitoring - LogScaleMonitoring - SplunkContainer SecurityDockerKubernetesEDR/XDR tools - CrowdstrikeEDR/XDR tools - CarbonBlackEDR/XDR tools - SentinelOneSecurity Tools - Palo AltoSecurity Tools - CyberArkProgramming - PythonScripting - BashVersion Control - GitVersion Control - GitLabVersion Control - GitHubCalmness under pressurePythonShellBashAWSAzureGCPIAMOracleSplunkGitGitHubGitLabMentoringCloud Security
About this role
Frontdoor, Inc. is reimagining how homeowners maintain and repair their homes. As a Senior Incident Response Engineer, you will lead and participate in complex security due diligence efforts, partner with stakeholders to implement security threat remediation, and work in a collaborative, cloud-native environment.
Responsibilities:
- Participate or lead complex security due diligence efforts and plan security integration
- Partnering with business stakeholders to identify and implement actionable plans to achieve remediation of security threats
- Diving deep into tactical security aspects of our services
Requirements:
- At least 8 years in security with 3 of those in incident response
- Experience running incidents from a security responder point of view
- An eagerness to partner with other teams and an understanding that security means the proper application of friction, not just speed bumps and blockers
- Excellent mentoring and teaching skills and an overall eagerness to help guide more junior engineers into more senior roles
- You should be a cooler in tense situations regarding incidents, level of risk acceptance, and how to manage work during these situations in order to provide investigatory support to the organization
- Experience using a logging platform like LogScale, ELK or Splunk
- Experience with cloud security in AWS, GCP, Azure or Oracle Cloud
- Deep experience in EDR or XDR and tools like Crowdstrike, CarbonBlack, SentinelOne etc
- Experience with container security, meaning you have created, understand the process and know what to do, where to look, how processes inside a container are viewed from the OS/Host level
- Experience with Palo Alto, CyberArk, etc
- High school diploma or equivalent required
- Bachelor's degree in Engineering, Computer Science, Statistics, or similar field preferred
- Experience in Information Security, Cybersecurity, Identity and Access Management (IAM), and Information Technology to include accountability for complex tasks and projects
- Hands-on experience securing cloud applications and infrastructure (AWS, GCP, Azure)
- Solid understanding of security vulnerabilities, attacker exploit techniques, and methods for remediation
- Experience with Docker and Kubernetes
- Experience implementing and leveraging logging and monitoring solutions; Logscale, Splunk, PagerDuty
- Git and GitLab or GitHub
- Programming or Scripting experience using Python, Bash or Shell