Weight WatchersRemote
Senior Security Engineer - Detection and Response
United States of America
Full Time
5 hours ago
$235,000 - $255,000 USD
H1B Sponsor Likely
Key skills
AWSTerraformIAMDecision MakingProblem SolvingCollaborationCloud Security
About this role
WeightWatchers is a global digital health company and the world’s #1 doctor-recommended, clinically studied behavioral weight health program. As a Senior Security Engineer - Detection and Response, you will build and mature a detection and response program, detecting and responding to security incidents while collaborating with various teams to enhance cloud security posture.
Responsibilities:
- Build and mature a detection and response program
- Detect and respond to security incidents and participate in an incident on-call rotation
- Develop innovative ways to detect security incidents
- Design and build the security for the future of our infrastructure
- Partner with the infrastructure team, engineering team, compliance team and within security teams to maintain and further improve our cloud security posture
- Create solutions and processes to identify, resolve and mitigate security vulnerabilities and risks
- Research threats and attack vectors that impact WW applications and infrastructure
- Devise and bolster defense-in-depth through secure-by-default frameworks, architectures and processes
- Mentor and share security standards and processes with all parts of the organization
Requirements:
- Expertise responding to complex incidents across endpoint, network, and cloud
- Capable of understanding an unfamiliar system enough to successfully respond to an incident involving the system
- Expertise in detection engineering
- Experience with SIEM, EDR, and CSPM tools
- Deep understanding of the threat landscape
- Experience with assessing risks
- Experience in cloud security, especially for AWS, anything to do with IAM, secure configuration of services, AWS native security services like AWS Cloudtrail, SCP's, AWS Org, Config etc
- Ability to understand the whole solution, not just the technology
- Focus on the end to end lifecycle of solving a problem and solutioning for it and not just implementing a security technology. Have a well-rounded view for problem solving
- Deep care for the patient and your fellow employees experience as you surpass security challenges
- Hunger to drive decision making, collaboration and to have deeper opinions on security design
- You can review different design choices and can understand/discuss pros and cons for each
- Ability to code to automate tedious tasks
- Experience with Infrastructure as Code. We use terraform!
- Strong collaboration skills with the wider security team and engineering at WW